| Name | CVE-2013-6049 |
| Description | apt-listbugs before 0.1.10 creates temporary files insecurely, which allows attackers to have unspecified impact via unknown vectors. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| apt-listbugs (PTS) | buster | 0.1.28 | fixed |
| bullseye | 0.1.35 | fixed |
| bookworm | 0.1.40 | fixed |
| sid, trixie | 0.1.41 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| apt-listbugs | source | wheezy | 0.1.8+deb7u1 | | | |
| apt-listbugs | source | (unstable) | 0.1.10 | low | | |
Notes
[squeeze] - apt-listbugs <no-dsa> (Minor issue)