Overview

File _patchinfo of Package patchinfo.490

<patchinfo incident="490">
  <packager>adrianSuSE</packager>
  <issue tracker="bnc" id="901643">VUL-0: CVE-2015-0778: osc _service file shell injection</issue>
  <issue tracker="cve" id="CVE-2015-0778"></issue>
  <category>security</category>
  <rating>important</rating>
  <summary>Security update for osc</summary>
  <description>osc was updated to fix a security issue and some non-security bugs.

osc was updated to 0.151.0, fixing the following vulnerability:
* fixed shell command injection via crafted _service files CVE-2015-0778 boo#901643

The following non-security bugs were fixed:
* fix times when data comes from OBS backend
* support updateing the link in target package for submit requests
* various minor bugfixes
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places