CVE-2013-4400

virt-login-shell in libvirt 1.1.2 through 1.1.3 allows local users to overwrite arbitrary files and possibly gain privileges via unspecified environment variables or command-line arguments...

Low: augeas

Issue Overview: Multiple flaws were found in the way Augeas handled configuration files when updating them. An application using Augeas to update configuration files in a directory that is writable to by a different user for example, an application running as root that is updating files in a...

Perl: Multiple vulnerabilities

Background Perl is Larry Wall’s Practical Extraction and Report Language. Description Multiple vulnerabilities have been discovered in Perl. Please review the CVE identifiers referenced below for details. Impact A local attacker could cause a Denial of Service condition or perform symlink attacks...

CVE-2012-0787

The clonefile function in transfer.c in Augeas before 1.0.0, when copyifrenamefails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files and obtain sensitive information via a bind mount on the 1 .augsave or 2 destination file when using th...

CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

DEBIAN-CVE-2012-6607

The transformsave function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup save action, a different vector than CVE-2012-0786...

CVE-2012-6607

The transformsave function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup save action, a different vector than CVE-2012-0786...

CVE-2012-0786

The transformsave function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file...

CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

UBUNTU-CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

CVE-2013-2561

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on 1 ibdiagnet.db, 2 ibdiagnet.fdbs, 3 ibdiagnetibis.log, 4 ibdiagnet.log, 5 ibdiagnet.lst, 6 ibdiagnet.mcfdbs, 7 ibdiagnet.pkey, 8 ibdiagnet.psl, 9 ibdiagnet.slvl, or 10 ibdiagnet.sm in /tmp/...

CVE-2012-0787

Augeas before 1.0.0 is affected. The clone_file function in transfer.c, when copy_if_rename_fails is set and the rename returns EXDEV or EBUSY, allows a local attacker to overwrite arbitrary files and leak sensitive data via a bind mount on .augsave or destination file (backup) or .augnew (newfil...

CVE-2013-2561

CVE-2013-2561 affects OpenFabrics ibutils 1.5.7, enabling local users to overwrite arbitrary files via a symlink attack on files in /tmp (ibdiagnet.db, ibdiagnet.fdbs, ibdiagnet_ibis.log, ibdiagnet.log, ibdiagnet.lst, ibdiagnet.mcfdbs, ibdiagnet.pkey, ibdiagnet.psl, ibdiagnet.slvl, ibdiagnet.sm)....

CVE-2012-6607

The transformsave function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup save action, a different vector than CVE-2012-0786...

CVE-2012-0786

The transformsave function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file...

CVE-2013-4214

rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIECACHEON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpiecache...

Design/Logic Flaw

nagios.upgradetov3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/...

Design/Logic Flaw

rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIECACHEON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpiecache...

RedHat Update for RDMA stack RHSA-2013:1661-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...