CVE-2016-9949 (apport, ubuntu_linux)

Posted on 2016년 12월 17일2016년 12월 20일 by admin

An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote attackers to execute arbitrary Python code.

Source: CVE-2016-9949 (apport, ubuntu_linux)

답글 남기기 응답 취소