Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2019-8325

An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManager#run calls alert_error without escaping, escape sequence injection is possible. (There are many ways to cause an error.)

Related bugs and status

CVE-2019-8325 (Candidate) is related to these bugs:

Bug #480307: Please support wacom artpen rotation axis and airbrush wheel

Summary				In	Importance	Status
	480307	Please support wacom artpen rotation axis and airbrush wheel		Inkscape	Medium	In Progress

See the

CVE page on Mitre.org for more details.

References

MISC: https://hackerone.com/...
SUSE: openSUSE-SU-2019:1771
MLIST: [debian-lts-announce] ...