8 matches found
Fedora Update for gvfs FEDORA-2014-9092
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for libplist FEDORA-2014-9092
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for libgpod FEDORA-2014-9092
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : gvfs-1.18.3-3.fc20 / ifuse-1.1.3-3.fc20 / libgpod-0.8.3-2.fc20 / etc (2014-9092)
Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDGCONFIGHOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 Note that Tenable Network Security has extracted the preceding description block directly...
CVE-2013-2142
userpref.c in libimobiledevice 1.1.4, when $HOME and $XDGCONFIGHOME are not set, allows local users to overwrite arbitrary files via a symlink attack on 1 HostCertificate.pem, 2 HostPrivateKey.pem, 3 libimobiledevicerc, 4 RootCertificate.pem, or 5 RootPrivateKey.pem in...
CVE-2013-2142
CVE-2013-2142 affects libimobiledevice 1.1.4 where, if HOME and XDG_CONFIG_HOME are not set, a local user can cause a symlink attack to overwrite arbitrary files in /tmp/root/.config/libimobiledevice/ (HostCertificate.pem, HostPrivateKey.pem, libimobiledevicerc, RootCertificate.pem, RootPrivateKe...
[USN-1927-1] libimobiledevice vulnerability
========================================================================== Ubuntu Security Notice USN-1927-1 August 14, 2013 libimobiledevice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...
Updated libimobiledevice packages fix CVE-2013-2142
Updated libimobiledevice packages fix security vulnerability: Paul Collins discovered that libimobiledevice incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files and access device keys. In the default Ubuntu installation, this issue shoul...