Launchpad.net

CVE 2013-6888

Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball.

See the CVE page on Mitre.org for more details.

References