Red Hat Bugzilla – Bug 185981
CVE-2006-1296 beagle-status arbitrary script execution
Last modified: 2007-11-30 17:11:27 EST
A bug was found in the way the beagle-status script calls the
beagle-info script. Please see the folling Debian bug for more
This bug could allow a local attacker to execute arbitrary commands as
the user running beagle-status.
beagle-0.2.3-4 has been pushed for FC5, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.