Описание
modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2.10 has a race condition between the time when the LUKS encryption keyfile is created and when secure permissions are set.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- ExploitIssue TrackingThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.1 (включая) до 3.2.10 (включая)
cpe:2.3:a:calamares:calamares:*:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.01971
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-362
Связанные уязвимости
CVSS3: 8.1
ubuntu
больше 6 лет назад
modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2.10 has a race condition between the time when the LUKS encryption keyfile is created and when secure permissions are set.
CVSS3: 8.1
debian
больше 6 лет назад
modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2. ...
CVSS3: 8.1
github
больше 3 лет назад
modules/luksbootkeyfile/main.py in Calamares through 3.2.4 has a race condition between the time when the LUKS encryption keyfile is created and when secure permissions are set.
EPSS
Процентиль: 83%
0.01971
Низкий
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-362