Lucene search
K

6 matches found

OSV
OSV
added 2016/07/28 12:0 a.m.17 views

DLA-564-1 tardiff - security update

Bulletin has no description...

10CVSS6.2AI score0.05391EPSS
Exploits0
Debian
Debian
added 2016/07/27 10:5 p.m.30 views

[SECURITY] [DLA 564-1] tardiff security update

Package : tardiff Version : 0.1-1+deb7u1 CVE ID : CVE-2015-0857 CVE-2015-0858 Two vulnerabilities were found in tardiff: CVE-2015-0857 Arbitrary command execution was possible via shell metacharacters in the name of a 1 tar file or 2 file within a tar file. CVE-2015-0858 Local users could write t...

10CVSS8.3AI score0.05391EPSS
Exploits0
CVE
CVE
added 2016/05/06 5:0 p.m.65 views

CVE-2015-0858

Summary: CVE-2015-0858 affects tardiff (Cool Projects). The vulnerability is a local symlink attack on a pathname under /tmp/tardiff-$$, allowing local users to write to arbitrary files. Debian security advisory DLA-564-1 fixes this in tardiff version 0.1-1+deb7u1 for Debian 7 (Wheezy). CVSS data...

3.3CVSS5.9AI score0.00368EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/05/03 12:0 a.m.20 views

Debian DSA-3562-1 : tardiff - security update

Several vulnerabilities were discovered in tardiff, a tarball comparison tool. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-0857 Rainer Mueller and Florian Weimer discovered that tardiff is prone to shell command injections via shell...

10CVSS6.9AI score0.05391EPSS
Exploits0References6
Debian
Debian
added 2016/05/01 12:4 p.m.29 views

[SECURITY] [DSA 3562-1] tardiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3562-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2016 https://www.debian.org/security/faq -...

10CVSS8.1AI score0.05391EPSS
Exploits0
Debian
Debian
added 2016/05/01 12:4 p.m.22 views

[SECURITY] [DSA 3562-1] tardiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3562-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2016 https://www.debian.org/security/faq -...

10CVSS2AI score0.05391EPSS
Exploits0
Rows per page
Query Builder