Filtered by vendor Click Project
Subscriptions
Filtered by product Click
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2015-8768 | 2 Canonical, Click Project | 2 Ubuntu Linux, Click | 2024-11-21 | N/A |
click/install.py in click does not require files in package filesystem tarballs to start with ./ (dot slash), which allows remote attackers to install an alternate security policy and gain privileges via a crafted package, as demonstrated by the test.mmrow app for Ubuntu phone. |
Page 1 of 1.