DEBIAN-CVE-2009-4013

Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to overwrite arbitrary files or obtain sensitive information via vectors involving (1) control field names, (2) control field values, and (3) control files of patch systems.

References

https://security-tracker.debian.org/tracker/CVE-2009-4013

Affected packages

Debian:11 / lintian

Package

Name: lintian
Purl: pkg:deb/debian/lintian?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.2

Ecosystem specific

{
    "urgency": "medium"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2009-4013.json"

Debian:12 / lintian

Package

Name: lintian
Purl: pkg:deb/debian/lintian?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.2

Ecosystem specific

{
    "urgency": "medium"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2009-4013.json"

Debian:13 / lintian

Package

Name: lintian
Purl: pkg:deb/debian/lintian?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.2

Ecosystem specific

{
    "urgency": "medium"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2009-4013.json"

Debian:14 / lintian

Package

Name: lintian
Purl: pkg:deb/debian/lintian?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.2

Ecosystem specific

{
    "urgency": "medium"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2009-4013.json"