CVE-2019-13313

Опубликовано: 05 июл. 2019

Источник: debian

Описание

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libosinfo	fixed	1.6.0-1		package
libosinfo	ignored		buster	package
libosinfo	ignored		stretch	package
libosinfo	postponed		jessie	package

Примечания

https://www.redhat.com/archives/libosinfo/2019-July/msg00026.html

Связанные уязвимости

CVE-2019-13313

CVSS3: 7.8

ubuntu

больше 6 лет назад

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

CVE-2019-13313

CVSS3: 2.8

redhat

больше 6 лет назад

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

CVE-2019-13313

CVSS3: 7.8

nvd

больше 6 лет назад

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

SUSE-SU-2024:1700-1

suse-cvrf

больше 1 года назад

Security update for libosinfo

SUSE-SU-2019:2273-1

suse-cvrf

больше 6 лет назад

Security update for libosinfo