Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2025-8454
- EPSS 0.02%
- Published 01.08.2025 05:41:09
- Last modified 06.08.2025 16:17:38
It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream sour...
8.8
CVE-2013-7325
- EPSS 0.54%
- Published 03.12.2019 23:15:11
- Last modified 21.11.2024 02:00:45
An issue exists in uscan in devscripts before 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball.
9.8
CVE-2018-13043
- EPSS 1.28%
- Published 01.07.2018 22:29:00
- Last modified 21.11.2024 03:46:18
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing.
1