AVG-2665 log

Package xz
Status Fixed
Severity High
Type arbitrary command execution
Affected 5.2.5-2
Fixed 5.2.5-3
Current 5.6.2-1 [core]
Ticket None
Created Thu Apr 7 21:50:47 2022
Issue Severity Remote Type Description
CVE-2022-1271 High No Arbitrary command execution
Malicious filenames with two or more newlines can make zgrep and xzgrep to write to arbitrary files or (with a GNU sed extension) lead to arbitrary code...
Date Advisory Package Type
07 Apr 2022 ASA-202204-8 xz arbitrary command execution