logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-3147

Description

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.


Affected Software


CPE Name Name Version
redhat:automatic_bug_reporting_tool redhat automatic bug reporting tool -
redhat:enterprise_linux_desktop redhat enterprise linux desktop 7.0
redhat:enterprise_linux_server redhat enterprise linux server 7.0
redhat:enterprise_linux_server_aus redhat enterprise linux server aus 7.3
redhat:enterprise_linux_server_aus redhat enterprise linux server aus 7.4
redhat:enterprise_linux_server_aus redhat enterprise linux server aus 7.6
redhat:enterprise_linux_server_aus redhat enterprise linux server aus 7.7
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.1
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.2
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.3
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.4
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.5
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.6
redhat:enterprise_linux_server_eus redhat enterprise linux server eus 7.7
redhat:enterprise_linux_server_tus redhat enterprise linux server tus 7.3
redhat:enterprise_linux_server_tus redhat enterprise linux server tus 7.6
redhat:enterprise_linux_server_tus redhat enterprise linux server tus 7.7
redhat:enterprise_linux_workstation redhat enterprise linux workstation 7.0

Related