Errata overview
Errata ID 139
Date 2018-07-04
Source package xdg-utils
Fixed in version 1.1.1-1+deb9u1
Description 
This update addresses the following issue:
* Argument injection vulnerability in open_envvar() function (CVE-2017-18266)
Additional notes
CVE ID CVE-2017-18266
UCS Bug number #47289