thefuck

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Magnificent app which corrects your previous console command
Version 3.32-11 [extra-testing]
3.32-10 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2062 3.30-3 3.31-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2021-34363 AVG-2062 Medium No Arbitrary file overwrite
The thefuck package before 3.31 allows path traversal that leads to arbitrary file deletion via the "undo archive operation" feature.

Advisories

Date Advisory Group Severity Type
15 Jun 2021 ASA-202106-39 AVG-2062 Medium arbitrary file overwrite