Debian Security Update DSA-3977 newsbeuter - security update

Thread starter LinuxBot
Start date Sep 19, 2017

LinuxBot

Member

Sep 19, 2017

It was discovered that podbeuter, the podcast fetcher in newsbeuter, a text-mode RSS feed reader, did not properly escape the name of the media enclosure (the podcast file), allowing a remote attacker to run an arbitrary shell command on the client machine. This is only exploitable if the file is also played in podbeuter.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 1,041 (members: 5, guests: 1,036)

Latest posts

Impartiality Of Distro Choices Advocated At This Site
- Latest: Terminal Velocity
- 31 minutes ago
Forum Assistance
USB ports issue - really slow
- Latest: Alexzee
- Today at 8:36 PM
General Computing
K
Autostart applications on Fedora.
- Latest: KGIII
- Today at 8:27 PM
Fedora
M
Lenovo Legion 7i Gen8 Kernel NULL pointer dereference
- Latest: mburge
- Today at 5:54 PM
Laptops / Netbooks
K
Basic Security
- Latest: KGIII
- Today at 5:51 PM
Linux Advanced Tutorials

Top