Launchpad.net

CVE 2015-5186

Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.

See the CVE page on Mitre.org for more details.