10 matches found
Advisory ROSA-SA-2021-2004
Software: zlib 1.2.7 OS: Cobalt 7.9 CVE-ID: CVE-2013-0296 CVE-Crit: HIGH CVE-DESC: race condition in pigz before 2.2.5 uses permissions derived from umask when compressing a file before setting that file's permissions to match those of the source file, which may allow local users to bypass implie...
openSUSE Security Update : pigz (openSUSE-SU-2013:0540-1)
pigz incorrectly used world writeable permissions during unpacking CVE-2013-0296. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-258. The text description of this plugin is C SU...
CVE-2013-0296
Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring...
CVE-2013-0296
Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring...
CVE-2013-0296
Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring...
CVE-2013-0296
CVE-2013-0296 : The race condition affects pigz, prior to version 2.2.5, where permissions derived from the process umask may be applied during compression before aligning the file’s permissions with the source. This can allow local users to bypass intended access controls while compression is in...
CVE-2013-0296
Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring...
SUSE-SU-2015:0716-1 Security update for pigz
This pigz update to version 2.1.6 includes a security fix and several bug fixes: fix temporary file permission bug bnc803933, CVE-2013-0296 fix dictzip with CPU == 1 bnc597756 Security Issue reference: CVE-2013-0296...
Fedora Update for pigz FEDORA-2013-2589
Check for the Version of pigz OpenVAS Vulnerability Test Fedora Update for pigz FEDORA-2013-2589 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
Fedora Update for pigz FEDORA-2013-2589
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...