Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2005-2214

HistoryJul 11, 2005 - 4:00 a.m.

CVE-2005-2214

2005-07-1104:00:00

Debian Security Bug Tracker

security-tracker.debian.org

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

apt-setup in Debian GNU/Linux installs the apt.conf file with insecure permissions, which allows local users to obtain sensitive information such as passwords.

OSVersionArchitecturePackageVersionFilename
Debian12allapt-setup<= 1:0.182apt-setup_1:0.182_all.deb
Debian11allapt-setup<= 1:0.166apt-setup_1:0.166_all.deb
Debian10allapt-setup<= 1:0.151~deb10u1apt-setup_1:0.151~deb10u1_all.deb
Debian999allapt-setup<= 1:0.185apt-setup_1:0.185_all.deb
Debian13allapt-setup<= 1:0.185apt-setup_1:0.185_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	apt-setup	<= 1:0.182	apt-setup_1:0.182_all.deb
Debian	11	all	apt-setup	<= 1:0.166	apt-setup_1:0.166_all.deb
Debian	10	all	apt-setup	<= 1:0.151~deb10u1	apt-setup_1:0.151~deb10u1_all.deb
Debian	999	all	apt-setup	<= 1:0.185	apt-setup_1:0.185_all.deb
Debian	13	all	apt-setup	<= 1:0.185	apt-setup_1:0.185_all.deb

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for DEBIANCVE:CVE-2005-2214