RockyLinux 8 : abrt (RLSA-2025:22760)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:22760 advisory. abrt: Command-injection in ABRT leading to local privilege escalation CVE-2025-12744 Tenable has extracted the preceding description block directly from the...

Alibaba Cloud Linux 3 : 0192: abrt (ALINUX3-SA-2025:0192)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0192 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-12744: A flaw was found in the ABRT daemon...

Important: Red Hat Security Advisory: abrt security update

An update for abrt is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

RHEL 8 : abrt (RHSA-2025:23030)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23030 advisory. The Automatic Bug Reporting Tool ABRT recognizes defects in applications and creates bug reports that help maintainers fix the defects. ABRT uses a...

AlmaLinux 8 : abrt (ALSA-2025:22760)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:22760 advisory. abrt: Command-injection in ABRT leading to local privilege escalation CVE-2025-12744 Tenable has extracted the preceding description block directly from the...

RHEL 8 : abrt (RHSA-2025:23032)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23032 advisory. The Automatic Bug Reporting Tool ABRT recognizes defects in applications and creates bug reports that help maintainers fix the defects. ABRT uses a...

RHEL 8 : abrt (RHSA-2025:23033)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23033 advisory. The Automatic Bug Reporting Tool ABRT recognizes defects in applications and creates bug reports that help maintainers fix the defects. ABRT uses a...

Fedora 43 : abrt (2025-ae1276a1c6)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ae1276a1c6 advisory. Fix CVE-2025-12744 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

EUVD-2012-1140

Malware in sbrugna...

EUVD-2015-5252

Malware in sbrugna...

EUVD-2015-3237

Malware in sbrugna...

EUVD-2015-3232

Malware in sbrugna...

EUVD-2012-5542

Malware in sbrugna...

CVE-2011-4088

ABRT might allow attackers to obtain sensitive information from crash reports...

Sensitive Information Leakage

ABRT Automatic Bug Reporting Tool is a tool to help users to detect defects in applications and to create a bug report with all the information needed by a maintainer to fix it. It uses a plug-in system to extend its functionality. It was found that ABRT was vulnerable to multiple race condition...

Arbitrary File Upload

ABRT Automatic Bug Reporting Tool is vulnerable to arbitrary file upload. There is a flaw in moving problem reports between certain directories as abrt-handle-upload fails to verify that a new problem directory has appropriate permissions and did not contain symbolic links. A malicious problem...

Symlink Attack

ABRT Automatic Bug Reporting Tool is a tool to help users to detect defects in applications and to create a bug report with all the information needed by a maintainer to fix it. It uses a plug-in system to extend its functionality. It was found that ABRT was vulnerable to multiple race condition...

Scientific Linux Security Update : abrt on SL7.x x86_64 (20150609)

It was found that ABRT was vulnerable to multiple race condition and symbolic link flaws. A local attacker could use these flaws to potentially escalate their privileges on the system. CVE-2015-3315 It was discovered that the kernel-invoked coredump processor provided by ABRT wrote core dumps to...