A vulnerability in shutter was found. Using the "Show in folder" menu option while viewing a file with a specially-crafted path allows for arbitrary code execution with the permissions of the user running Shutter.
Reproducer available at:
Created shutter tracking bugs for this issue:
Affects: fedora-all [bug 1262932]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.