CVE-2019-17080

Name of the Vulnerable Software and Affected Versions mintinstall (aka Software Manager) versions 7.9.9

Description The issue is related to the REVIEWS CACHE component of the mintinstall software manager, which is vulnerable to exploitation due to the restoration of untrusted data in memory. This could allow a remote attacker to execute arbitrary code if they control a REVIEWS CACHE file, as it undergoes an unpickle operation.

Recommendations For mintinstall version 7.9.9, update to version 8.0.0 or apply available backports to resolve the issue.