CVE-2010-2246

feh before 1.8, when the –wget-timestamp option is enabled, might allow remote attackers to execute arbitrary commands via shell metacharacters in a URL.

Date published : 2011-05-26

http://www.securityfocus.com/bid/41161

http://derf.homelinux.org/git/feh/plain/ChangeLog