The get_rpm_nvr_by_file_path_temporary function in util.py in setroubleshoot prior to 3.2.22 allows remote malicious users to execute arbitrary commands via shell metacharacters in a file name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
selinux setroubleshoot |
||
fedoraproject fedora 22 |