Bug 931678 (CVE-2015-4035) - VUL-0: CVE-2015-4035: xz: xzgrep 4.999.9beta arbitrary code execution vulnerability
Summary: VUL-0: CVE-2015-4035: xz: xzgrep 4.999.9beta arbitrary code execution vulnera...
Status: RESOLVED FIXED
Alias: CVE-2015-4035
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P5 - None : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/116914/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-05-20 11:59 UTC by Alexander Bergmann
Modified: 2015-05-20 12:04 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexander Bergmann 2015-05-20 11:59:09 UTC 
CVE-2015-4035

    xzgrep 4.999.9beta processes filenames containing a semicolon incorrectly

    $ touch /tmp/semi\;colon
    $ xzgrep anystring /tmp/semi\;colon 
    xz: /tmp/semi: No such file or directory
    /usr/bin/xzgrep: line 199: colon: command not found

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4035
http://seclists.org/oss-sec/2015/q2/500
Comment 1 Alexander Bergmann 2015-05-20 12:04:20 UTC 
* Affected versions: 4.999.9beta
* Fixed versions: 5.0.0 and up, 5.2.0 and up

SLE-11-SP3:    xz-5.0.3
SLE-12:        xz-5.0.5

openSUSE:13.1  xz-5.0.5
openSUSE:13.2  xz-5.0.7

Non of SLE or openSUSE versions are affected.