CVE-2008-1687
EPSS 3.0%發布日:2008/4/9修改日:2026/4/28
也稱為:DEBIAN-CVE-2008-1687
描述
The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1.4.11 do not quote their output when a file is created, which might allow context-dependent attackers to trigger a macro expansion, leading to unspecified use of an incorrect filename.
受影響套件(1)
- Debian/m4from 0