Описание
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.
Дополнительная информация
Статус:
Low
https://bugzilla.redhat.com/show_bug.cgi?id=484211alsa-utils: Insecure temporary file use in /usr/bin/alsa-info(.sh)
Связанные уязвимости
CVSS3: 5.5
ubuntu
около 6 лет назад
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.
CVSS3: 5.5
nvd
около 6 лет назад
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.
CVSS3: 5.5
debian
около 6 лет назад
alsa-utils 1.0.19 and later versions allows local users to overwrite a ...
github
почти 4 года назад
alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.