Lucene search
MitreCVELIST:CVE-2014-2667HistoryNov 16, 2014 - 1:00 a.m.
CVE-2014-2667
2014-11-1601:00:00
mitre
www.cve.org
Race condition in the _get_masked_mode function in Lib/os.py in Python 3.2 through 3.5, when exist_ok is set to true and multiple threads are used, might allow local users to bypass intended file permissions by leveraging a separate application vulnerability before the umask has been set to the expected value.
References
bugs.python.org/issue21082
lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
lists.opensuse.org/opensuse-updates/2014-05/msg00007.html
lists.opensuse.org/opensuse-updates/2014-05/msg00008.html
www.openwall.com/lists/oss-security/2014/03/28/15
www.openwall.com/lists/oss-security/2014/03/29/5
www.openwall.com/lists/oss-security/2014/03/30/4
security.gentoo.org/glsa/201503-10
Related
openvas
openvas
Python 3.2.x < 3.2.6, 3.3.x < 3.3.6, 3.4.x < 3.4.1 os.makedirs() not thread-safe (bpo-21082) - Linux
2021-11-01 00:00:00
Mageia: Security Advisory (MGASA-2014-0216)
2022-01-28 00:00:00
Fedora Update for python3 FEDORA-2014-16393
2014-12-12 00:00:00
debiancve
debiancve
CVE-2014-2667
2014-11-16 01:59:01
mageia
mageia
Updated python3 packages fix security vulnerability
2014-05-15 02:04:31
nessus
nessus
openSUSE Security Update : python3 (openSUSE-SU-2014:0596-1)
2014-06-13 00:00:00
Fedora 19 : python3-3.3.2-11.fc19 (2014-16479)
2015-01-06 00:00:00
Fedora 20 : python3-3.3.2-19.fc20 (2014-16393)
2014-12-15 00:00:00
cve
cve
CVE-2014-2667
2014-11-16 01:59:01
nvd
nvd
CVE-2014-2667
2014-11-16 01:59:01
prion
prion
Race condition
2014-11-16 01:59:00
ubuntucve
ubuntucve
CVE-2014-2667
2014-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: python3-3.3.2-19.fc20
2014-12-12 04:23:13
[SECURITY] Fedora 19 Update: python3-3.3.2-11.fc19
2015-01-06 06:16:20
gentoo
gentoo
Python: Multiple vulnerabilities
2015-03-18 00:00:00
suse
suse
Security update for python3 (important)
2020-01-21 00:00:00