Lucene search
GoogleOSV:CVE-2019-12779HistoryJun 07, 2019 - 8:29 p.m.
CVE-2019-12779
2019-06-0720:29:00
Google
osv.dev
4
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.
References
lists.opensuse.org/opensuse-security-announce/2019-07/msg00017.html
lists.opensuse.org/opensuse-security-announce/2019-07/msg00027.html
lists.opensuse.org/opensuse-security-announce/2019-08/msg00031.html
www.securityfocus.com/bid/108691
access.redhat.com/errata/RHSA-2019:3610
bugzilla.redhat.com/show_bug.cgi?id=1695948
github.com/ClusterLabs/libqb/issues/338
github.com/ClusterLabs/libqb/releases/tag/v1.0.4
github.com/ClusterLabs/libqb/releases/tag/v1.0.5
security.gentoo.org/glsa/202107-03
Related
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : libqb Vulnerability (NS-SA-2020-0057)
2020-12-09 00:00:00
Scientific Linux Security Update : libqb on SL7.x x86_64 (20200407)
2020-04-21 00:00:00
SUSE SLED15 / SLES15 Security Update : libqb (SUSE-SU-2019:1791-1)
2019-07-10 00:00:00
openvas
openvas
openSUSE: Security Advisory for libqb (openSUSE-SU-2019:1718-1)
2019-07-20 00:00:00
Mageia: Security Advisory (MGASA-2020-0048)
2022-01-28 00:00:00
openSUSE: Security Advisory for libqb (openSUSE-SU-2019:1752-1)
2020-01-09 00:00:00
redhatcve
redhatcve
CVE-2019-12779
2019-06-21 04:51:43
debiancve
debiancve
CVE-2019-12779
2019-06-07 20:29:00
suse
suse
Security update for libqb (moderate)
2019-07-20 00:00:00
Security update for libqb (moderate)
2019-08-14 00:00:00
Security update for libqb (moderate)
2019-07-19 00:00:00
redhat
redhat
(RHSA-2020:1189) Moderate: libqb security update
2020-03-31 09:30:14
(RHSA-2019:3610) Moderate: libqb security and bug fix update
2019-11-05 18:06:49
amazon
amazon
Medium: libqb
2019-05-16 21:45:00
ubuntucve
ubuntucve
CVE-2019-12779
2019-06-07 00:00:00
prion
prion
Design/Logic Flaw
2019-06-07 20:29:00
centos
centos
libqb security update
2020-04-08 18:25:20
cve
cve
CVE-2019-12779
2019-06-07 20:29:00
CVE-2019-10148
2020-04-20 20:15:11
nvd
nvd
CVE-2019-12779
2019-06-07 20:29:00
CVE-2019-10148
2020-04-20 20:15:11
gentoo
gentoo
libqb: Insecure temporary file
2021-07-03 00:00:00
oraclelinux
oraclelinux
libqb security and bug fix update
2019-11-14 00:00:00
libqb security update
2020-04-06 00:00:00
cvelist
cvelist
CVE-2019-12779
2019-06-07 19:44:25
veracode
veracode
Arbitrary File Overwrite
2019-11-06 00:21:05
mageia
mageia
Updated libqb packages fix security vulnerability
2020-01-28 10:52:40