logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-3142

Description

The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application.


Affected Software


CPE Name Name Version
redhat:automatic_bug_reporting_tool redhat automatic bug reporting tool 2.1.11

Related