Debian Security Update DSA-3977 newsbeuter - security update

Thread starter LinuxBot
Start date Sep 19, 2017

LinuxBot

Member

Sep 19, 2017

It was discovered that podbeuter, the podcast fetcher in newsbeuter, a text-mode RSS feed reader, did not properly escape the name of the media enclosure (the podcast file), allowing a remote attacker to run an arbitrary shell command on the client machine. This is only exploitable if the file is also played in podbeuter.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Azirino

Total: 999 (members: 2, guests: 997)

Latest posts

HELP! Disk filling up!!
- Latest: CataclysmicGentleman
- Today at 4:16 PM
Linux Security
Kali Everyday
- Latest: GatorsFan
- Today at 4:11 PM
Kali Linux
Plex on Ubuntu Gamepack tearing
- Latest: GatorsFan
- Today at 4:05 PM
Linux Audio / Video
N
Solved mapping mouse butons to keystrokes
- Latest: new_vintage
- Today at 3:22 PM
SuSE / OpenSUSE
WiFi problem - unstable connection, ping spikes (Nobara 39 KDE)
- Latest: dos2unix
- Today at 3:16 PM
General Linux Questions

Top