CVE-2019-12779

Опубликовано: 07 июн. 2019

Источник: ubuntu

Приоритет: low

CVSS2: 6.6

CVSS3: 7.1

Описание

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	not-affected	1.0.5-1
disco	ignored	end of life
eoan	not-affected	1.0.5-1
esm-infra-legacy/trusty	needed
esm-infra/bionic	needed
esm-infra/focal	not-affected	1.0.5-1
esm-infra/xenial	needed
focal	not-affected	1.0.5-1

Показывать по

Ссылки на источники

6.6 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

CVE-2019-12779

CVSS3: 6.5

redhat

почти 7 лет назад

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.

CVE-2019-12779

CVSS3: 7.1

nvd

больше 6 лет назад

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.

CVE-2019-12779

CVSS3: 7.1

debian

больше 6 лет назад

libqb before 1.0.5 allows local users to overwrite arbitrary files via ...

openSUSE-SU-2019:1752-1

suse-cvrf

больше 6 лет назад

Security update for libqb

openSUSE-SU-2019:1718-1

suse-cvrf

больше 6 лет назад

Security update for libqb

6.6 Medium

CVSS2

7.1 High

CVSS3

CVE-2019-12779

Описание

Пакет libqb

Ссылки на источники

Связанные уязвимости