Описание
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.1.0-0ubuntu2 |
| esm-infra-legacy/trusty | not-affected | 1.1.0-0ubuntu2 |
| esm-infra/xenial | not-affected | 1.1.0-0ubuntu2 |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | ignored | end of life |
| raring | not-affected | 1.0.0-0ubuntu1 |
| saucy | not-affected | 1.1.0-0ubuntu2 |
| trusty | not-affected | 1.1.0-0ubuntu2 |
Показывать по
Ссылки на источники
3.3 Low
CVSS2
Связанные уязвимости
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
The transform_save function in transform.c in Augeas before 1.0.0 allo ...
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
ELSA-2013-1537: augeas security, bug fix, and enhancement update (LOW)
3.3 Low
CVSS2