CVE-2019-12450

🗓️ 29 May 2019 16:16:14Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 445 Views

file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy operation is in progress

Reporter	Title	Published	Views	Family All 130
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities	15 Apr 202221:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2019-12450)	4 Aug 202117:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	2 Feb 202122:11	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	27 Jan 202100:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2019-12450)	4 Aug 202117:56	–	ibm
Tenable Nessus	Amazon Linux 2 : glib2 (ALAS-2019-1289)	20 Sep 201900:00	–	nessus
Tenable Nessus	Amazon Linux 2 : glib2 (ALAS-2020-1553)	11 Nov 202000:00	–	nessus
Tenable Nessus	Amazon Linux AMI : glib2 (ALAS-2019-1256)	13 Aug 201900:00	–	nessus
Tenable Nessus	CentOS 8 : glib2 (CESA-2019:3530)	29 Jan 202100:00	–	nessus
Tenable Nessus	CentOS 7 : glib2 and ibus (RHSA-2020:3978)	20 Oct 202000:00	–	nessus

NVD

Node

gnome glibRange2.15.0–2.61.1

Node

debian debian_linuxMatch8.0

Node

redhat enterprise_linuxMatch8.0

redhat enterprise_linux_eusMatch8.1

redhat enterprise_linux_eusMatch8.2

redhat enterprise_linux_eusMatch8.4

redhat enterprise_linux_eusMatch8.6

redhat enterprise_linux_server_ausMatch8.2

redhat enterprise_linux_server_ausMatch8.4

redhat enterprise_linux_server_ausMatch8.6

redhat enterprise_linux_server_tusMatch8.2

redhat enterprise_linux_server_tusMatch8.4

redhat enterprise_linux_server_tusMatch8.6

Node

canonical ubuntu_linuxMatch12.04-

canonical ubuntu_linuxMatch14.04esm

canonical ubuntu_linuxMatch16.04esm

canonical ubuntu_linuxMatch18.04lts

canonical ubuntu_linuxMatch18.10

canonical ubuntu_linuxMatch19.04

Node

opensuse leapMatch15.0

Node

fedoraproject fedoraMatch30

Source	Link
lists	www.lists.opensuse.org/opensuse-security-announce/2019-06/msg00076.html
gitlab	www.gitlab.gnome.org/GNOME/glib/commit/d8f8f4d637ce43f8699ba94c9b7648beda0ca174
usn	www.usn.ubuntu.com/4014-1/
security	www.security.netapp.com/advisory/ntap-20190606-0003/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2W4WIOAGO3M743M5KZLVQZM3NGHQDYLI/
usn	www.usn.ubuntu.com/4014-2/
access	www.access.redhat.com/errata/RHSA-2019:3530
lists	www.lists.debian.org/debian-lts-announce/2019/06/msg00013.html

21 Nov 2024 04:22Current

6.8Medium risk

Vulners AI Score6.8

CVSS 27.5

CVSS 3.19.8

EPSS0.01159