Red Hat Bugzilla – Bug 1291763
nsis: privilege escalation and code execution vulnerabilities in generated NSIS installers
Last modified: 2017-08-24 14:43:19 EDT
Installers generated by NSIS 2.46 are vulnerable to attacks that can lead to code execution and privilege escalation (if the installer is running with elevated privileges).
Debian's bug report:
Created mingw-nsis tracking bugs for this issue:
Affects: fedora-all [bug 1291764]