Debian Security Advisory 5296-1
Debian Linux Security Advisory 5296-1 - Robin Peraglie and Johannes Moritz discovered an argument injection bug in the xfce4-mime-helper component of xfce4-settings, which can be exploited using the xdg-open common tool.
Since xdg-open is used by multiple standard applications for opening
links, this bug could be exploited by an attacker to run arbitrary code on
an user machine by providing a malicious PDF file with specifically
crafted links.
https://packetstormsecurity.com/files/170117/dsa-5296-1.txt
Wed, 07 Dec 2022 14:37:41 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com