Описание
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Storage 2.1 | appliance-base | Affected | ||
| Red Hat Storage 2.0 | appliance | Fixed | RHSA-2013:1205 | 04.09.2013 |
| Red Hat Storage 2.0 | glusterfs | Fixed | RHSA-2013:1205 | 04.09.2013 |
| Red Hat Storage 2.0 | gluster-swift-plugin | Fixed | RHSA-2013:1205 | 04.09.2013 |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-377
https://bugzilla.redhat.com/show_bug.cgi?id=9865162.0: appliance-base / redhat-storage-server /tmp file creation vuln
2.1 Low
CVSS2
Связанные уязвимости
nvd
больше 12 лет назад
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
github
больше 3 лет назад
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
2.1 Low
CVSS2