DEBIAN-CVE-2018-15869

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/DEBIAN-CVE-2018-15869

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-15869.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2018-15869

Upstream

CVE-2018-15869

Published

2018-08-25T00:29:00Z

Modified

2025-09-19T06:18:41Z

Summary

[none]

Details

An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image (AMI) from the uncurated public community AMI catalog.

References

https://security-tracker.debian.org/tracker/CVE-2018-15869

Affected packages

Debian:11 / packer

Package

Name: packer
Purl: pkg:deb/debian/packer?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.3.1+dfsg-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / packer

Package

Name: packer
Purl: pkg:deb/debian/packer?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.3.1+dfsg-1

Ecosystem specific

{
    "urgency": "low"
}