Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.14.1ubuntu0.1", "binary_name": "devscripts" }, { "binary_version": "2.14.1ubuntu0.1", "binary_name": "devscripts-dbgsym" } ] }