FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

lshell -- Multiple security issues

Affected packages
lshell <= 0.9.18

Details

VuXML ID f353525a-d8b8-11e6-a071-001e67f15f5a
Discovery 2016-02-04
Entry 2018-07-27

lshell reports:

It is possible to escape lshell if an allowed command can execute an arbitrary non allowed one (issue #122).

Inappropriate parsing of commands can lead to arbitrary command execution (issue #147, #149, #151).

References

URL https://github.com/ghantoos/lshell/issues/122
URL https://github.com/ghantoos/lshell/issues/147
URL https://github.com/ghantoos/lshell/issues/149
URL https://github.com/ghantoos/lshell/issues/151