Launchpad.net

CVE 2016-8606

The REPL server (--listen) in GNU Guile 2.0.12 allows an attacker to execute arbitrary code via an HTTP inter-protocol attack.

See the CVE page on Mitre.org for more details.