Уязвимость CVE-2019-3689

Пакет	Статус	Версия исправления	Релиз	Тип
nfs-utils	fixed	1:1.3.4-3		package
nfs-utils	fixed	1:1.3.4-2.5+deb10u1	buster	package
nfs-utils	fixed	1:1.3.4-2.1+deb9u1	stretch	package

CVE-2019-3689

CVSS3: 5.1

ubuntu

больше 6 лет назад

The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If statd is compromised, it can therefore trick processes running with root privileges into creating/overwriting files anywhere on the system.

CVE-2019-3689

CVSS3: 9.8

redhat

больше 6 лет назад

The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If statd is compromised, it can therefore trick processes running with root privileges into creating/overwriting files anywhere on the system.

CVE-2019-3689

CVSS3: 5.1

nvd

больше 6 лет назад

The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If statd is compromised, it can therefore trick processes running with root privileges into creating/overwriting files anywhere on the system.

openSUSE-SU-2019:2435-1

suse-cvrf

больше 6 лет назад

Security update for nfs-utils

openSUSE-SU-2019:2408-1

suse-cvrf

больше 6 лет назад

Security update for nfs-utils

exploitDog

CVE-2019-3689

Описание

Пакеты

Примечания

Связанные уязвимости