Overview

File _patchinfo of Package patchinfo.7502

<patchinfo incident="7502">
  <issue id="1067342" tracker="bnc">VUL-0: CVE-2017-16667: backintime (aka Back in Time) before 1.1.24 did improper escaping/quoting offile paths used as arguments to the 'notify-send' command, leading to some partsof file paths being executed as shell commands within an os</issue>
  <issue id="2017-16667" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>MasterPatricko</packager>
  <description>This update for backintime fixes the following issues:

Security issue fixed:

- CVE-2017-16667: Fixed shell injection in notify-send (boo#1067342).
</description>
  <summary>Security update for backintime</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places