Ubuntu Security Notice 6475-1 - It was discovered that Cobbler did not properly handle user input, which could result in an absolute path traversal. An attacker could possibly use this issue to read arbitrary files. It was discovered that Cobbler did not properly handle user input, which could result in command injection. An attacker could possibly use this issue to execute arbitrary code with high privileges.
0f5bdfd830c1045876a39f585eab0d4480ccae6d44a7e287338db0cbc5144e33
Cobbler versions 2.6.0 and below suffer from an arbitrary file read vulnerability.
497ed8c35ababfe7320d0530b3d28ddb9cfc0de530e9750bb755847db44423a6