CVE-2017-12836
Publication date 13 August 2017
Last updated 25 August 2025
Ubuntu priority
Description
CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| cvs | ||
| 16.04 LTS xenial |
Fixed 2:1.12.13+real-15ubuntu0.1
|
|
| 14.04 LTS trusty |
Fixed 2:1.12.13+real-12ubuntu0.1
|
Notes
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.5 · High
|
| Attack vector | Network |
| Attack complexity | High |
| Privileges required | None |
| User interaction | Required |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-3399-1
- cvs vulnerability
- 21 August 2017