Embedded RabbitMQ v1.2.2 Release Notes
Release Date: 2017-11-25 // over 6 years ago-
🛠 Fixed CVE-2015-4035
It was discovered that the xzgrep's xz helper script did not properly sanitize certain file names. A local attacker could use this flaw to inject and execute arbitrary commands by tricking a user into running the xzgrep script on a file with a specially crafted file name.
Commits:
Contributors: