FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
81826d12-317a-11e2-9186-406186f3d89d	weechat -- Arbitrary shell command execution via scripts Sebastien Helleu reports: Untrusted command for function hook_process could lead to execution of commands, because of shell expansions. Workaround with a non-patched version: remove/unload all scripts calling function hook_process (for maximum safety). Discovery 2012-11-15 Entry 2012-11-18 Modified 2012-11-18 weechat ge 0.3.0 lt 0.3.9.2 weechat-devel < 20121118 http://weechat.org/security/ https://savannah.nongnu.org/bugs/?37764

VuXML ID

Description

81826d12-317a-11e2-9186-406186f3d89d

weechat -- Arbitrary shell command execution via scripts

Sebastien Helleu reports:

Untrusted command for function hook_process could lead to execution of commands, because of shell expansions.

Workaround with a non-patched version: remove/unload all scripts calling function hook_process (for maximum safety).

Discovery 2012-11-15
Entry 2012-11-18
Modified 2012-11-18
weechat

ge 0.3.0 lt 0.3.9.2

weechat-devel

< 20121118

http://weechat.org/security/
https://savannah.nongnu.org/bugs/?37764