Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-25265

Опубликовано: 02 дек. 2020
Источник: debian

Описание

AppImage libappimage before 1.0.3 allows attackers to trigger an overwrite of a system-installed .desktop file by providing a .desktop file that contains Name= with path components.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libappimagefixed1.0.4-1package
libappimageno-dsabusterpackage

Примечания

  • https://github.com/AppImage/libappimage/pull/146

  • https://github.com/refi64/CVE-2020-25265-25266

  • https://github.com/AppImageCommunity/libappimage/pull/146

Связанные уязвимости

ubuntu логотип

CVE-2020-25265

CVSS3: 6.5
ubuntu
около 5 лет назад

AppImage libappimage before 1.0.3 allows attackers to trigger an overwrite of a system-installed .desktop file by providing a .desktop file that contains Name= with path components.

nvd логотип

CVE-2020-25265

CVSS3: 6.5
nvd
около 5 лет назад

AppImage libappimage before 1.0.3 allows attackers to trigger an overwrite of a system-installed .desktop file by providing a .desktop file that contains Name= with path components.

github логотип

GHSA-pfgx-f7x8-8985

github
больше 3 лет назад

AppImage libappimage before 1.0.3 allows attackers to trigger an overwrite of a system-installed .desktop file by providing a .desktop file that contains Name= with path components.