CVE-2020-15167

Name	CVE-2020-15167
Description	In Miller (command line utility) using the configuration file support introduced in version 5.9.0, it is possible for an attacker to cause Miller to run arbitrary code by placing a malicious `.mlrrc` file in the working directory. See linked GitHub Security Advisory for complete details. A fix is ready and will be released as Miller 5.9.1.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severity	medium
Debian Bugs	969467

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
miller (PTS)	stretch	4.5.0-1	fixed
	buster	5.4.0-1	fixed
	bullseye, sid	5.9.1+dfsg-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Debian Bugs
miller	source	stretch	(not affected)
miller	source	buster	(not affected)
miller	source	(unstable)	5.9.1+dfsg-1	969467

Notes

[buster] - miller <not-affected> (Introduced in 5.9.0)
[stretch] - miller <not-affected> (Introduced in 5.9.0)
https://github.com/johnkerl/miller/security/advisories/GHSA-mw2v-4q78-j2cw