AVG-2665 log
| Package | xz |
| Status | Fixed |
| Severity | High |
| Type | arbitrary command execution |
| Affected | 5.2.5-2 |
| Fixed | 5.2.5-3 |
| Current | 5.6.1-3 [core] |
| Ticket | None |
| Created | Thu Apr 7 21:50:47 2022 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2022-1271 | High | No | Arbitrary command execution | Malicious filenames with two or more newlines can make zgrep and xzgrep to write to arbitrary files or (with a GNU sed extension) lead to arbitrary code... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 07 Apr 2022 | ASA-202204-8 | xz | arbitrary command execution |