guile

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	Portable, embeddable Scheme implementation written in C
Version	3.0.10-1 [core]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-47	2.0.12-1	2.0.13-1	High	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2016-8606	AVG-47	High	Yes	Arbitrary code execution	It was reported that the REPL server is vulnerable to the HTTP inter- protocol attack. This constitutes a remote code execution vulnerability for...
CVE-2016-8605	AVG-47	Low	No	Information disclosure	The mkdir procedure of GNU Guile, an implementation of the Scheme programming language, temporarily changed the process' umask to zero. During that time...

Issue

Group

Severity

Remote

Type

Description

CVE-2016-8606

AVG-47

High

Yes

Arbitrary code execution

It was  reported that the REPL server is vulnerable to the HTTP inter- protocol attack. This constitutes a remote code execution vulnerability for...

CVE-2016-8605

AVG-47

Low

Information disclosure

The mkdir procedure of GNU Guile, an implementation of the Scheme programming language, temporarily changed the process' umask to zero. During that time...

Advisories

Date	Advisory	Group	Severity	Type
16 Oct 2016	ASA-201610-10	AVG-47	High	multiple issues