Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3386HistoryAug 07, 2012 - 9:55 p.m.
CVE-2012-3386
2012-08-0721:55:00
Debian Security Bug Tracker
security-tracker.debian.org
4
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
The “make distcheck” rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition that allows local users to execute arbitrary code via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | automake1.11 | < 1:1.11.6-1 | automake1.11_1:1.11.6-1_all.deb |
| Debian | 11 | all | automake1.11 | < 1:1.11.6-1 | automake1.11_1:1.11.6-1_all.deb |
| Debian | 10 | all | automake1.11 | < 1:1.11.6-1 | automake1.11_1:1.11.6-1_all.deb |
| Debian | 999 | all | automake1.11 | < 1:1.11.6-1 | automake1.11_1:1.11.6-1_all.deb |
Related
openvas
openvas
CentOS Update for automake CESA-2013:0526 centos6
2013-03-12 00:00:00
Fedora Update for automake17 FEDORA-2012-14770
2012-10-05 00:00:00
Fedora Update for automake FEDORA-2012-14297
2012-09-22 00:00:00
prion
prion
Race condition
2012-08-07 21:55:00
nessus
nessus
CentOS 6 : automake (CESA-2013:0526)
2013-03-10 00:00:00
Fedora 16 : automake-1.11.6-1.fc16 (2012-14297)
2012-09-24 00:00:00
openSUSE 15 Security Update : wdiff (openSUSE-SU-2022:10031-1)
2022-06-30 00:00:00
securityvulns
securityvulns
[ MDVSA-2012:103 ] automake
2012-07-16 00:00:00
automake race conditions
2012-07-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package automake_1.10 version 1:1.10.3-alt2
2012-09-09 00:00:00
oraclelinux
oraclelinux
automake security update
2013-02-22 00:00:00
automake security update
2014-09-17 00:00:00
redhat
redhat
(RHSA-2014:1243) Low: automake security update
2014-09-16 00:00:00
(RHSA-2013:0526) Low: automake security update
2013-02-21 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: automake17-1.7.9-17.fc18
2012-10-04 03:42:04
[SECURITY] Fedora 17 Update: automake-1.11.6-1.fc17
2012-09-19 03:09:42
[SECURITY] Fedora 16 Update: automake-1.11.6-1.fc16
2012-09-22 00:08:49
veracode
veracode
Arbitrary Code Execution
2019-01-15 08:57:51
ubuntucve
ubuntucve
CVE-2012-3386
2012-08-07 00:00:00
cve
cve
CVE-2012-3386
2012-08-07 21:55:00
centos
centos
automake security update
2013-02-27 19:33:58
automake security update
2014-09-30 11:21:28
amazon
amazon
Low: automake19
2014-09-17 21:41:00
freebsd
freebsd
automake -- Insecure 'distcheck' recipe granted world-writable distdir
2012-07-09 00:00:00
suse
suse
Security update for wdiff (moderate)
2022-06-25 00:00:00
gentoo
gentoo
GNU Automake: Multiple vulnerabilities
2013-10-25 00:00:00
slackware
slackware
[slackware-security] libpng
2012-07-25 03:00:37
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.3%
Related for DEBIANCVE:CVE-2012-3386