3 matches found
CVE-2026-35357 vulnerabilities
Vulnerabilities for packages: uutils...
CVE-2026-35357 vulnerabilities
Vulnerabilities for packages: uutils...
UBUNTU-CVE-2026-35357
The cp utility in uutils coreutils is vulnerable to an information disclosure race condition. Destination files are initially created with umask-derived permissions e.g., 0644 before being restricted to their final mode e.g., 0600 later in the process. A local attacker can race to open the file...