pacman

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A library-based package manager with dependency support
Version 5.1.3-1 [core]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-921 5.1.2-1 5.1.3-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2019-9686 AVG-921 High Yes Arbitrary code execution
pacman prior to version 5.1.3 allows directory traversal when installing a remote package via a specified URL "pacman -U <url>" due to an unsanitized file...

Advisories

Date Advisory Group Severity Description
11 Mar 2019 ASA-201903-7 AVG-921 High arbitrary code execution