Описание
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 5.26.0-5 |
| devel | not-affected | 5.26.0-5 |
| esm-infra-legacy/trusty | released | 5.18.2-2ubuntu1.4 |
| esm-infra/xenial | released | 5.22.1-9ubuntu0.3 |
| precise/esm | not-affected | 5.14.2-6ubuntu2.7 |
| trusty | released | 5.18.2-2ubuntu1.4 |
| trusty/esm | released | 5.18.2-2ubuntu1.4 |
| upstream | released | 5.24.1-3 |
| vivid/stable-phone-overlay | ignored | end of life |
| vivid/ubuntu-core | ignored | end of life |
Показывать по
4.3 Medium
CVSS2
5.9 Medium
CVSS3
Связанные уязвимости
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.
Race condition in the rmtree and remove_tree functions in the File-Pat ...
4.3 Medium
CVSS2
5.9 Medium
CVSS3