CVE-2014-3209

Опубликовано: 16 нояб. 2014

Источник: debian

EPSS Низкий

Описание

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ldns	fixed	1.6.17-4		package
ldns	no-dsa		squeeze	package
ldns	fixed	1.6.13-1+deb7u1	wheezy	package

EPSS

Процентиль: 36%

0.00154

Низкий

Связанные уязвимости

CVE-2014-3209

ubuntu

около 11 лет назад

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.

CVE-2014-3209

redhat

почти 12 лет назад

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.

CVE-2014-3209

nvd

около 11 лет назад

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.

GHSA-cc58-7rpr-73mr

github

больше 3 лет назад

The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.

EPSS

Процентиль: 36%

0.00154

Низкий