FLAT-DGXLJ – Vulnerability | Fluid Attacks Database

Database

Description

arbitrary code execution

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
pypi	qutebrowser	>=0 <1.4.1	1.4.1
debian 11	qutebrowser	>=0 <1.4.1-1	1.4.1-1
debian 13	qutebrowser	>=0 <1.4.1-1	1.4.1-1
debian 12	qutebrowser	>=0 <1.4.1-1	1.4.1-1
debian 14	qutebrowser	>=0 <1.4.1-1	1.4.1-1
alpm rolling_release	qutebrowser	>=1.4.0-1 <1.4.1-1	1.4.1-1

Aliases

1. CVE-2018-108952. NVD-2018-108953. OSV-2018-108954. OSV-DEBIAN-2018-108955. GCVE-2018-108956. SECURITY-TRACKER-CVE-2018-10895

References

1. https://github.com/qutebrowser/qutebrowser/commit/43e58ac865ff862c2008c510fc5f7627e10b46602. https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-108953. https://github.com/pypa/advisory-database/tree/main/vulns/qutebrowser/PYSEC-2018-27.yaml4. http://www.openwall.com/lists/oss-security/2018/07/11/7