AVG-401 log
| Package | newsbeuter |
| Status | Fixed |
| Severity | High |
| Type | arbitrary command execution |
| Affected | 2.9-7 |
| Fixed | 2.9-8 |
| Current | Removed |
| Ticket | None |
| Created | Sat Sep 16 20:09:16 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-14500 | High | Yes | Arbitrary command execution | Improper Neutralization of Special Elements used in an OS Command in the podcast playback function of Podbeuter in Newsbeuter 0.3 through 2.9 allows remote... |
| CVE-2017-12904 | High | Yes | Arbitrary command execution | Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 16 Sep 2017 | ASA-201709-11 | newsbeuter | arbitrary command execution |
| Notes |
|---|
2.9-7 did not properly apply the patch file for CVE-2017-12904 |