Ubuntu Security Notice (C) 2011-2013 Canonical, Inc. / NASL script (C) 2011-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Jakub Wilk and Raphael Hertzog discovered that dpkg-source did not
correctly handle certain paths and symlinks when unpacking
source-format version 3.0 packages. If a user or an automated system
were tricked into unpacking a specially crafted source package, a
remote attacker could modify files outside the target unpack
directory, leading to a denial of service or potentially gaining
access to the system.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8