Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-3013 - log back

CVE-2021-3013 edited at 11 Jun 2021 15:48:45

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Local

Type

-	Unknown
+	Arbitrary code execution

Description

+	ripgrep before version 13 on Windows allows attackers to trigger execution of arbitrary programs from the current working directory via the -z/--search-zip or --pre flag.

References

+	https://github.com/BurntSushi/ripgrep/issues/1773
+	https://github.com/BurntSushi/ripgrep/commit/229d1a8d41b0023420e7815578fa0b39c0d5c2e4

Notes

CVE-2021-3013 created at 11 Jun 2021 15:46:31