logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2019-20384

Description

Gentoo Portage through 2.3.84 allows local users to place a Trojan horse plugin in the /usr/lib64/nagios/plugins directory by leveraging access to the nagios user account, because this directory is writable in between a call to emake and a call to fowners.


Affected Software


CPE Name Name Version
gentoo:portage gentoo portage 2.3.84