Описание
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1:0.62~dfsg-0.1 |
| bionic | not-affected | 1:0.62~dfsg-0.1 |
| cosmic | not-affected | 1:0.62~dfsg-0.1 |
| devel | needs-triage | |
| disco | not-affected | 1:0.62~dfsg-0.1 |
| eoan | not-affected | 1:0.62~dfsg-0.1 |
| esm-apps/bionic | not-affected | 1:0.62~dfsg-0.1 |
| esm-apps/focal | not-affected | 1:0.62~dfsg-0.1 |
| esm-apps/jammy | not-affected | 1:0.62~dfsg-0.1 |
| esm-apps/noble | not-affected | 1:0.62~dfsg-0.1 |
Показывать по
Ссылки на источники
EPSS
7.2 High
CVSS2
Связанные уязвимости
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhe ...
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
EPSS
7.2 High
CVSS2