Lucene search
MitreCVELIST:CVE-2019-13227HistoryJul 04, 2019 - 11:32 a.m.
CVE-2019-13227
2019-07-0411:32:59
mitre
www.cve.org
In GUI mode, deepin-clone before 1.1.3 creates a log file at the fixed path /tmp/.deepin-clone.log as root, and follows symlinks there. An unprivileged user can prepare a symlink attack there to create or overwrite files in arbitrary file system locations. The content is not attacker controlled.
References
Related
cve
cve
CVE-2019-13227
2019-07-04 12:15:10
osv
osv
CVE-2019-13227
2019-07-04 12:15:10
prion
prion
Code injection
2019-07-04 12:15:00
nvd
nvd
CVE-2019-13227
2019-07-04 12:15:10
openvas
openvas
Fedora Update for dtkcore FEDORA-2019-3d418f349c
2019-07-29 00:00:00
Fedora Update for deepin-clone FEDORA-2019-3d418f349c
2019-07-29 00:00:00
Fedora Update for dtkwidget FEDORA-2019-3d418f349c
2019-07-29 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: dtkcore-2.0.16.1-1.fc30
2019-07-28 01:23:57
[SECURITY] Fedora 30 Update: deepin-clone-1.1.4-1.fc30
2019-07-28 01:23:57
[SECURITY] Fedora 30 Update: dtkwidget-2.0.16.1-1.fc30
2019-07-28 01:23:57
nessus
nessus
Fedora 30 : deepin-clone / dtkcore / dtkwidget (2019-3d418f349c)
2019-07-29 00:00:00