CVE-2024-22029

Опубликовано: 16 окт. 2024

Источник: ubuntu

Приоритет: medium

CVSS3: 7.8

Описание

Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root

Релиз	Статус	Примечание
devel	not-affected	SUSE specific issue
esm-apps/noble	not-affected	SUSE specific issue
esm-infra/focal	DNE
focal	DNE
jammy	DNE
mantic	ignored	end of life, was not-affected (SUSE specific issue
noble	not-affected	SUSE specific issue
oracular	not-affected	SUSE specific issue
plucky	not-affected	SUSE specific issue
upstream	not-affected	SUSE specific issue

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	not-affected	SUSE specific issue
esm-infra-legacy/trusty	not-affected	SUSE specific issue
esm-infra/focal	DNE
focal	DNE
jammy	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/bionic	not-affected	SUSE specific issue
esm-apps/xenial	not-affected	SUSE specific issue
esm-infra-legacy/trusty	not-affected	SUSE specific issue
esm-infra/focal	DNE
focal	DNE
jammy	DNE
mantic	DNE
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/bionic	not-affected	SUSE specific issue
esm-infra/focal	DNE
esm-infra/xenial	not-affected	SUSE specific issue
focal	DNE
jammy	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	SUSE specific issue
esm-apps/bionic	not-affected	SUSE specific issue
esm-apps/focal	not-affected	SUSE specific issue
esm-apps/jammy	not-affected	SUSE specific issue
esm-apps/noble	not-affected	SUSE specific issue
focal	ignored	end of standard support, was not-affected (SUSE specific issue
jammy	not-affected	SUSE specific issue
mantic	ignored	end of life, was not-affected (SUSE specific issue
noble	not-affected	SUSE specific issue
oracular	not-affected	SUSE specific issue

Показывать по

Ссылки на источники

7.8 High

CVSS3

Связанные уязвимости

CVE-2024-22029

CVSS3: 7

redhat

почти 2 года назад

Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root

CVE-2024-22029

CVSS3: 7.8

nvd

больше 1 года назад

Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root

CVE-2024-22029

CVSS3: 7.8

debian

больше 1 года назад

Insecure permissions in the packaging of tomcat allow local users that ...

SUSE-SU-2024:0473-1

suse-cvrf

почти 2 года назад

Security update for tomcat10

GHSA-w8vw-x82m-vg68

CVSS3: 7.8

github

больше 1 года назад

Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root

7.8 High

CVSS3

CVE-2024-22029

Описание

Пакет tomcat10

Пакет tomcat6

Пакет tomcat7

Пакет tomcat8

Пакет tomcat9

Ссылки на источники

Связанные уязвимости