Download
| Alert*
CVE-2013-7050
The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCAN_EXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a directory name. CVE-2013-6888 Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball. |