AVG-921

Package pacman
Status Fixed
Severity High
Type arbitrary code execution
Affected 5.1.2-1
Fixed 5.1.3-1
Current 5.1.3-1 [core]
Ticket None
Created Mon Mar 11 15:32:11 2019
Issue Severity Remote Type Description
CVE-2019-9686 High Yes Arbitrary code execution
pacman prior to version 5.1.3 allows directory traversal when installing a remote package via a specified URL "pacman -U <url>" due to an unsanitized file...
Date Advisory Package Description
11 Mar 2019 ASA-201903-7 pacman arbitrary code execution