Bug number - 723034

Part of package: davfs2.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10

Debian Bug report logs -  #723034 davfs2: CVE-2013-4362: Unsecure use of system()
Package:      davfs2; Maintainer for davfs2 is Aymeric Agon-Rambosson <aymeric.agon@yandex.com>; Source for davfs2 is src:davfs2 (PTS, buildd, popcon).
Reported by: Werner Baumann <werner.baumann@onlinehome.de>
Date: Sun, 15 Sep 2013 16:33:02 UTC
Severity: critical
Tags: patch, security, upstream
Found in version davfs2/1.4.6-1.1
Fixed in versions davfs2/1.4.7-3, davfs2/1.4.6-1.1+deb7u1
Done: Luciano Bello <luciano@debian.org>
Bug is archived. No further changes may be made.Forwarded to http://savannah.nongnu.org/bugs/?40034

All x-patch and x-diff attachments.



PatchAuthorDate
davfs2-1.4.6-system.diffWerner Baumann <werner.baumann@onlinehome.de>Sun, 15 Sep 2013 18:29:46 +0200
davfs2-1.4.7-system.diffWerner Baumann <werner.baumann@onlinehome.de>Sun, 15 Sep 2013 18:29:46 +0200
davfs2-1.4.6-system-2.diffWerner Baumann <werner.baumann@onlinehome.de>Wed, 25 Sep 2013 20:57:51 +0200

Original bug report here.