CVE-2015-5224

Опубликовано: 23 авг. 2017

Источник: debian

EPSS Низкий

Описание

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
util-linux	fixed	2.27~rc2-2	experimental	package
util-linux	fixed	2.27-1		package

Примечания

chfn/chsh not built in util-linux in Debian (--disable-chfn-chsh)
https://github.com/karelzak/util-linux/commit/bde91c85bdc77975155058276f99d2e0f5eab5a9 (v2.27-rc2)

EPSS

Процентиль: 88%

0.04076

Низкий

Связанные уязвимости

CVE-2015-5224

CVSS3: 9.8

ubuntu

больше 8 лет назад

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

CVE-2015-5224

redhat

больше 10 лет назад

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

CVE-2015-5224

CVSS3: 9.8

nvd

больше 8 лет назад

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

GHSA-g2jw-fqx3-5mwq

CVSS3: 9.8

github

больше 3 лет назад

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

EPSS

Процентиль: 88%

0.04076

Низкий