TEMP-0000000-2C7EFD

NameTEMP-0000000-2C7EFD
Descriptionincorrect handling of {$smarty.template} and {$smarty.current_dir}
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
smarty3 (PTS)jessie, jessie (lts)3.1.21-1+deb8u2fixed
stretch (security), stretch (lts), stretch3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u6fixed
buster, buster (lts)3.1.33+20180830.1.3a78a21f+selfpack1-1+deb10u3fixed
buster (security)3.1.33+20180830.1.3a78a21f+selfpack1-1+deb10u2fixed
bullseye3.1.39-2+deb11u1fixed
bullseye (security)3.1.39-2+deb11u2fixed
bookworm3.1.47-2fixed
bookworm (security)3.1.47-2+deb12u1fixed
sid, trixie3.1.48-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
smartysource(unstable)(unfixed)unimportant
smarty3source(unstable)3.0.8-1unimportant

Notes

http://www.smarty.net/forums/viewtopic.php?t=18815
http://code.google.com/p/smarty-php/source/detail?r=3989
https://github.com/smarty-php/smarty/commit/0154f17de2b2dd16ff9c016923015ac19af9c0cb(3.0.7)
non-issue in practice, if you can place arbitrary template files you have worse problems

Search for package or bug name: Reporting problems