[ubuntu/focal-updates] maven-shared-utils 3.3.0-1ubuntu0.20.04.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Apr 11 22:28:07 UTC 2024
maven-shared-utils (3.3.0-1ubuntu0.20.04.1) focal-security; urgency=medium
* SECURITY UPDATE: Commandline class can emit double-quoted strings
without proper escaping, allowing shell injection attacks.
- debian/patches/CVE-2022-29599.patch: BourneShell unconditionally
single quotes executable and arguments.
- CVE-2022-29599
Date: 2024-03-28 22:49:09.078475+00:00
Changed-By: Chris <chris.kim at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/maven-shared-utils/3.3.0-1ubuntu0.20.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list