Bug 228138

Summary: CVE-2006-6979: amarok shell escaping issue
Product: [Fedora] Fedora Reporter: Ville Skytt√§ <ville.skytta>
Component: amarokAssignee: Aurelien Bompard <gauret>
Status: CLOSED NEXTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: medium    
Version: 6CC: fedora-security-list
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-03-01 21:15:08 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Ville Skyttä 2007-02-10 08:54:45 UTC
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6979

"The ruby handlers in Amarok do not properly quote text in certain contexts,
probably including construction of an unzip command line, which allows attackers
to execute arbitrary commands via shell metacharacters."

Not clear to me which, if any, versions of amarok in FE or upstream are
affected.  The referenced bugs.kde.org entry is open and there are no comments
at the moment.

Comment 1 Aurelien Bompard 2007-02-14 19:15:44 UTC
Bug fixed in amarok SVN, backported to amarok-1.4.5-2 and rebuilt for devel,
FC-6 and FC-5.
For reference : http://bugs.kde.org/show_bug.cgi?id=138499