Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

Debian LTS: DLA-3277-1 Powerline-Gitstatus Risk: Code Execution Threat

debian lts
Calendar Grey January 20, 2023
Scroller Debian Lts
Debian LTS has released a security update DLA-3278-1 addressing vulnerabilities in the package powerline-gitstatus to mitigate the risks of unauthorized code execution.
Powerline Gitstatus, a status line plugin for the VIM editor, allows arbitrary code execution

Summary

We recommend that you upgrade your powerline-gitstatus packages.

For the detailed security status of powerline-gitstatus please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/powerline-gitstatus

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
important
Lowest
Low
Medium
High
Critical

-------------------------------------------------------------------------Package: powerline-gitstatus
Version: 1.3.2-0+deb10u1
CVE ID: CVE-2022-42906

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.