7 matches found
Mageia: Security Advisory (MGASA-2014-0404)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-3856
The funced function in fish aka fish-shell 1.23.0 before 2.1.1 does not properly create temporary files, which allows local users to gain privileges via a temporary file with a predictable name...
CVE-2014-3856
The funced function in fish aka fish-shell 1.23.0 before 2.1.1 does not properly create temporary files, which allows local users to gain privileges via a temporary file with a predictable name...
CVE-2014-3856
The CVE-2014-3856 entry pertains to fish-shell (fish) 1.23.0 prior to 2.1.1, where temporary files are created improperly, allowing local privilege elevation via a predictable-named temporary file. The vulnerability is a local impact issue (high severity per CVSS v3.1 in the connected data) and i...
openSUSE Security Update : fish3 (openSUSE-2019-2188)
This update includes fish3 into the openSUSE Leap 15.1 distribution. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2019-2188. The text description of this plugin is C SUSE LLC. include"compat.inc"; if...
openSUSE: Security Advisory for fish3 (openSUSE-SU-2019:2177-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Updated fish package fixes multiple security vulnerabilities
Updated fish packages fix security vulnerability: fish, from at least version 1.16.0 to version 2.1.0 inclusive, does not check the credentials of processes communicating over the fishd universal variable server UNIX domain socket. This allows a local attacker to elevate their privileges to those...