Описание
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1402.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.7.3-1 |
| esm-infra-legacy/trusty | not-affected | 2.7.2-2 |
| lucid | ignored | end of life |
| precise | released | 2.6-1ubuntu0.1 |
| quantal | ignored | end of life |
| raring | ignored | end of life |
| saucy | ignored | end of life |
| trusty | not-affected | 2.7.2-2 |
| trusty/esm | not-affected | 2.7.2-2 |
| upstream | released | 2.7.3,2.7.2-2 |
Показывать по
EPSS
4.4 Medium
CVSS2
Связанные уязвимости
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1402.
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1402.
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create tempo ...
EPSS
4.4 Medium
CVSS2