22 matches found
Important: Red Hat Security Advisory: abrt security update
An update for abrt is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as havi...
EUVD-2015-3231
Malware in sbrugna...
EUVD-2013-4114
Malware in sbrugna...
EUVD-2015-1976
Malware in sbrugna...
EUVD-2015-1975
Malware in sbrugna...
EUVD-2015-3361
Malware in sbrugna...
EUVD-2015-3223
Malware in sbrugna...
CVE-2015-3151
Directory traversal vulnerability in abrt-dbus in Automatic Bug Reporting Tool ABRT allows local users to read, write to, or change ownership of arbitrary files via unspecified vectors to the 1 NewProblem, 2 GetInfo, 3 SetElement, or 4 DeleteElement method...
Design/Logic Flaw
The default event handling scripts in Automatic Bug Reporting Tool ABRT allow local users to gain privileges as demonstrated by a symlink attack on a varlogmessages file...
CVE-2015-3159
CVE-2015-3159 affects ABRT (Automatic Bug Reporting Tool) specifically the abrt-action-install-debuginfo-to-abrt-cache component. The root cause is improper handling of the process environment before invoking abrt-action-install-debuginfo, enabling local privilege elevation. Vulnerable platforms ...
CVE-2015-3151
Technical details (affected product, root cause, impact, or fix) for CVE-2015-3151 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2015-3150
abrt-dbus in Automatic Bug Reporting Tool ABRT allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the 1 ChownProblemDir, 2 DeleteElement, or 3 DeleteProblem method...
CVE-2015-3147
The CVE-2015-3147 issue affects ABRT’s daemon, specifically daemon/abrt-handle-upload.in, where moving reports from /var/spool/abrt-upload can be manipulated via a symbolic link to write to arbitrary files (or cause other impacts) on the system. The vulnerability arises from a symlink attack agai...
Red Hat Automatic Bug Reporting Tool Information Disclosure Vulnerability
Red Hat Automatic Bug Reporting Tool ABRT is a set of automated bug detection and reporting tools from Red Hat Red Hat. A security vulnerability exists in Red Hat ABRT versions prior to 2.1.6. A local attacker can exploit this vulnerability to obtain sensitive information from arbitrary files...
CVE-2013-4209
The CVE-2013-4209 entry concerns Red Hat ABRT (Automatic Bug Reporting Tool) before 2.1.6. The vulnerability allows a local attacker to obtain sensitive information from arbitrary files via vectors related to sha1sums, resulting in a partial confidentiality impact. Affected software: ABRT prior t...
CVE-2015-5273
CVE-2015-5273 affects ABRT and libreport: the abrt-action-install-debuginfo-to-abrt-cache helper allows a local attacker to write arbitrary files via a symlink attack on unpacked.cpio in a pre-created directory with a predictable name in /var/tmp. Public advisories (RHSA/CESA) and distributed sec...
Moderate: Red Hat Security Advisory: abrt and libreport security update
Updated abrt and libreport packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
ABRT Local Elevation of Privilege Vulnerability
ABRT is a set of automated bug reporting tools. ABRT suffers from a local boost elevation vulnerability. A local attacker can exploit this vulnerability to gain root privileges...
PT-2017-6533 · Red Hat +1 · Abrt +2
Name of the Vulnerable Software and Affected Versions: Automatic Bug Reporting Tool ABRT affected versions not specified Description: The issue concerns the event scripts in ABRT, which use world-readable permission on a copy of the sosreport file in problem directories. This allows local users t...
Fedora abrt competitive conditions vulnerability
Fedora is an open, innovative and forward-thinking operating system and platform based on Linux.ABRT is an automated bug detection and reporting tool. A competitive condition vulnerability exists in Fedora abrt. An attacker can exploit this vulnerability to gain privileges...