exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 14

GHSA-4cmr-h54h-4w78

больше 3 лет назад

The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.59.1 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-13012

больше 6 лет назад

The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-13012

больше 6 лет назад

CVSS3: 4.4

EPSS: Низкий

CVE-2019-13012

больше 6 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2019-13012

больше 5 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2019-13012

больше 6 лет назад

The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 ...

CVSS3: 7.5

EPSS: Низкий

openSUSE-SU-2019:1749-1

больше 6 лет назад

Security update for glib2

EPSS: Низкий

SUSE-SU-2019:1833-1

больше 6 лет назад

Security update for glib2

EPSS: Низкий

SUSE-SU-2019:1830-2

больше 6 лет назад

Security update for glib2

EPSS: Низкий

SUSE-SU-2019:1830-1

больше 6 лет назад

Security update for glib2

EPSS: Низкий

SUSE-SU-2019:1824-1

больше 6 лет назад

Security update for glib2

EPSS: Низкий

BDU:2020-00799

больше 6 лет назад

Уязвимость функций g_file_make_directory_with_parents, g_file_replace_contents библиотеки Glib, позволяющая нарушителю повысить свои привилегии и получить доступ к файлам

CVSS3: 7.5

EPSS: Низкий

ELSA-2021-1586

больше 4 лет назад

ELSA-2021-1586: GNOME security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

RLSA-2021:1586

больше 4 лет назад

Moderate: GNOME security, bug fix, and enhancement update

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-4cmr-h54h-4w78 The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.59.1 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.	CVSS3: 7.5	1% Низкий	больше 3 лет назад
CVE-2019-13012 The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.	CVSS3: 7.5	1% Низкий	больше 6 лет назад
CVE-2019-13012 The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.	CVSS3: 4.4	1% Низкий	больше 6 лет назад
CVE-2019-13012 The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kfsb->file, contents, length, NULL, FALSE, G_FILE_CREATE_REPLACE_DESTINATION, NULL, NULL, NULL). Consequently, it does not properly restrict directory (and file) permissions. Instead, for directories, 0777 permissions are used; for files, default file permissions are used. This is similar to CVE-2019-12450.	CVSS3: 7.5	1% Низкий	больше 6 лет назад
CVE-2019-13012	CVSS3: 7.5	1% Низкий	больше 5 лет назад
CVE-2019-13012 The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 ...	CVSS3: 7.5	1% Низкий	больше 6 лет назад
openSUSE-SU-2019:1749-1 Security update for glib2		1% Низкий	больше 6 лет назад
SUSE-SU-2019:1833-1 Security update for glib2		1% Низкий	больше 6 лет назад
SUSE-SU-2019:1830-2 Security update for glib2		1% Низкий	больше 6 лет назад
SUSE-SU-2019:1830-1 Security update for glib2		1% Низкий	больше 6 лет назад
SUSE-SU-2019:1824-1 Security update for glib2		1% Низкий	больше 6 лет назад
BDU:2020-00799 Уязвимость функций g_file_make_directory_with_parents, g_file_replace_contents библиотеки Glib, позволяющая нарушителю повысить свои привилегии и получить доступ к файлам	CVSS3: 7.5	1% Низкий	больше 6 лет назад
ELSA-2021-1586 ELSA-2021-1586: GNOME security, bug fix, and enhancement update (MODERATE)			больше 4 лет назад
RLSA-2021:1586 Moderate: GNOME security, bug fix, and enhancement update			больше 4 лет назад

Уязвимостей на страницу