| Name | CVE-2008-3907 |
| Description | The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DTSA-164-1, DTSA-164-2 |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| newsbeuter (PTS) | buster | 2.9-8 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| newsbeuter | source | lenny | 0.9.1-1+lenny3 | | | |
| newsbeuter | source | (unstable) | 1.2-1 | medium | | |
Notes
medium as versions < 1.0-1 didn't include a patch to wrap long article URLs so the
crafted part of the URL can be hidden. This of course only affects people not reading
articles in the built-in reader.