Vulnerabilities > Debian > Dpkg DEV
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-30 | CVE-2014-3865 | Path Traversal vulnerability in Debian Dpkg-Dev 1.3.0 Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pseudo-header in conjunction with (1) missing --- and +++ header lines or (2) a +++ header line with a blank pathname. | 6.4 |
2014-05-30 | CVE-2014-3864 | Path Traversal vulnerability in Debian Dpkg-Dev 1.3.0 Directory traversal vulnerability in dpkg-source in dpkg-dev 1.3.0 allows remote attackers to modify files outside of the intended directories via a crafted source package that lacks a --- header line. | 6.4 |