QID 198447

Date Published: 2021-08-03

QID 198447: Ubuntu Security Notification for PEAR vulnerability (USN-5027-1)

Pear incorrectly handled symbolic links in archives.

Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.

a remote attacker could possibly use this issue to execute arbitrary code..

  • CVSS V3 rated as High - 7.1 severity.
  • CVSS V2 rated as Medium - 3.6 severity.
  • Solution
    Refer to Ubuntu advisory: USN-5027-1 for affected packages and patching details, or update with your package manager.
    Vendor References

    CVEs related to QID 198447

    Software Advisories
    Advisory ID Software Component Link
    USN-5027-1 Ubuntu Linux URL Logo usn.ubuntu.com/5027-1