FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-20 14:15:46 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
d45ad7ae-5d56-11e5-9ad8-14dae9d210b8shutter -- arbitrary code execution

Luke Farone reports:

In the "Shutter" screenshot application, I discovered that using the "Show in folder" menu option while viewing a file with a specially-crafted path allows for arbitrary code execution with the permissions of the user running Shutter.


Discovery 2015-09-13
Entry 2015-09-17
shutter
>= 0.80 lt 0.93.1_2

http://seclists.org/oss-sec/2015/q3/541
https://bugs.launchpad.net/shutter/+bug/1495163
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=798862
CVE-2015-0854