CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball.
| Software | From | Fixed in |
|---|---|---|
| devscripts_devel_team / devscripts | 2.13.7 | 2.13.7.x |
| devscripts_devel_team / devscripts | 2.13.5 | 2.13.5.x |
| devscripts_devel_team / devscripts | - | 2.13.8.x |
| devscripts_devel_team / devscripts | 2.13.2 | 2.13.2.x |
| devscripts_devel_team / devscripts | 2.13.4 | 2.13.4.x |
| devscripts_devel_team / devscripts | 2.13.1 | 2.13.1.x |
| devscripts_devel_team / devscripts | 2.13.0 | 2.13.0.x |
| devscripts_devel_team / devscripts | 2.13.6 | 2.13.6.x |
| devscripts_devel_team / devscripts | 2.13.3 | 2.13.3.x |
- http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git;a=commitdiff;h=02c6850d973e3e1246fde72edab27f03d63acc52
- http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git%3Ba=commitdiff%3Bh=02c6850d973e3e1246fde72edab27f03d63acc52
- http://marc.info/?l=oss-security&m=138900586911271&w=2
- http://secunia.com/advisories/56192
- http://secunia.com/advisories/56579
- http://www.debian.org/security/2014/dsa-2836
- http://www.securityfocus.com/bid/64656
- http://www.ubuntu.com/usn/USN-2084-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90107
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime