511 matches found
Linux Distros Unpatched Vulnerability : CVE-2008-4950
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary files via a symlink attack on the tmp/gccross2.log temporary file. NOTE: the vendor disput...
Security update for dpkg
This update for dpkg fixes the following issues: CVE-2025-6297: Fixed improper sanitization of directory permissions leading to DoS via disk quota exhaustion due to files left behind on cleanup bsc1245573 Patch Instructions: To install this SUSE update use the SUSE recommended installation method...
SUSE-SU-2025:20562-1 Security update for dpkg
This update for dpkg fixes the following issues: - CVE-2025-6297: Fixed improper sanitization of directory permissions leading to DoS via disk quota exhaustion due to files left behind on cleanup bsc1245573...
Security update for dpkg
This update for dpkg fixes the following issues: CVE-2025-6297: Fixed an improper sanitization of directory permissions that could lead to DoS. bsc1245573 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
[SECURITY] Fedora 41 Update: dpkg-1.22.20-1.fc41
This package provides the low-level infrastructure for handling the installation and removal of Debian software packages. This package contains the tools including dpkg-source required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to...
Fedora: Security Advisory (FEDORA-2025-585ba94c06)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated dpkg packages fix security vulnerabilities
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
MGASA-2025-0204 Updated dpkg packages fix security vulnerabilities
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
dpkg-1.22.21-1.1 on GA media (moderate)
dpkg-1.22.21-1.1 on GA media Announcement ID: openSUSE-SU-2025:15314-1 Rating: moderate Cross-References: CVE-2025-6297 CVSS scores: CVE-2025-6297 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-6297 SUSE : 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N...
OPENSUSE-SU-2025:15314-1 dpkg-1.22.21-1.1 on GA media
These are all security issues fixed in the dpkg-1.22.21-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
AZL-64641 CVE-2025-6297 affecting package dpkg 1.20.10-1
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
DEBIAN-CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
UBUNTU-CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
CVE-2025-6297 dpkg-deb: Fix cleanup for control member with restricted directories
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
CVE-2025-6297
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...
CVE-2025-6297
The CVE-2025-6297 issue affects the dpkg-deb component, where improper sanitization of directory permissions when extracting a control member into a temporary directory can leave temporary files and lead to DoS via disk quota exhaustion or full disks. Affected: dpkg- and debian-based tooling acro...
CVE-2025-6297 dpkg-deb: Fix cleanup for control member with restricted directories
It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and...