CVE-2015-1870

2017-06-26T15:29:00
ID CVE-2015-1870
Type cve
Reporter secalert@redhat.com
Modified 2018-01-05T02:30:00

Description

The event scripts in Automatic Bug Reporting Tool (ABRT) uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors.