This affects all versions of package fis-kernel. The function util.nohup in fis3 is vulnerable to command injection in non-windows systems (e.g., Linux).
