ossp-pkg/shiela/ChangeLog 1.58 -> 1.59
--- ChangeLog 2006/07/20 08:18:01 1.58
+++ ChangeLog 2006/07/25 13:00:52 1.59
@@ -11,6 +11,10 @@
Changes between 1.1.6 and 1.1.7 (03-Oct-2005 to 20-Jul-2006):
+ *) Fix "arbitrary shell command execution" security bug caused by
+ missing shell command argument escaping for user supplied arguments.
+ [Brian Caswell <bmc@shmoo.com>, Ralf S. Engelschall] (CVE-2006-3633)
+
*) Upgraded build environment to GNU shtool 2.0.6 and
GNU autoconf 2.60
[Ralf S. Engelschall]
|
|
