|Description||App/HelperFunctions.pm in Shutter through 0.93.1 allows user-assisted remote attackers to execute arbitrary commands via a crafted image name that is mishandled during a "Show in Folder" action.|
|Source||CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)|
Vulnerable and fixed packages
The table below lists information on source packages.
|shutter (PTS)||sid, trixie, bookworm||0.99.2-4||fixed|
The information below is based on the following data on fixed versions.
[squeeze] - shutter <no-dsa> (Minor issue)