uutils coreutils cut Inconsistent Output Suppression with Newline Delimiters

The cut utility in uutils coreutils incorrectly handles the -s (only-delimited) option when a newline character is specified as the delimiter. The implementation fails to verify the only_delimited flag in the cut_fields_newline_char_delim function, causing the utility to print non-delimited lines that should have been suppressed. This can lead to unexpected data being passed to downstream scripts that rely on strict output filtering.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

控制流实现总是不正确

uutils coreutils 安全漏洞

uutils coreutils是Uutils开源的一个跨平台核心命令行工具集。 uutils coreutils存在安全漏洞，该漏洞源于cut实用程序在指定换行符作为分隔符时错误处理-s选项，实现未在cut_fields_newline_char_delim函数中验证only_delimited标志，导致实用程序打印应被抑制的非分隔行，可能将意外数据传递给依赖严格输出过滤的下游脚本。

N/A

N/A