VulnerableCode Package Details - pkg:deb/ubuntu/dpkg@1.18.24ubuntu1

Search for packages

Package details: pkg:deb/ubuntu/dpkg@1.18.24ubuntu1

purl	pkg:deb/ubuntu/dpkg@1.18.24ubuntu1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-v1fh-mtmc-aaab	dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source on NetBSD.	CVE-2017-8283

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version