13 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-7543
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aRts 1.5.10 and kdelibs3 3.5.10 and earlier do not properly create temporary directories, which allows local users to hijack the IPC by pre-creating the tempora...
RHEL 5 : arts (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - arts,kdelibs3: Use of mktemp3 allows attacker to hijack the IPC CVE-2015-7543 Note that Nessus has not tested for...
RHEL 6 : arts (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - arts,kdelibs3: Use of mktemp3 allows attacker to hijack the IPC CVE-2015-7543 Note that Nessus has not tested for...
SUSE: Security Advisory (SUSE-SU-2018:3487-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES11 Security Update : kdelibs3 (SUSE-SU-2018:3487-1)
This update for kdelibs3 fixes the following issues : CVE-2015-7543: Insecure creation of temporary directories allowed local users to hijack the IPC by pre-creating the temporary directory bsc958347. Note that Tenable Network Security has extracted the preceding description block directly from t...
CVE-2015-7543
CVE-2015-7543 affects aRts 1.5.10 and kdelibs3 3.5.10 and earlier. The issue stems from insecure creation of temporary directories, allowing a local attacker to hijack IPC by pre-creating the temporary directory. Several advisories note this vulnerability and provide patches/remediations: SUSE-SU...
CVE-2015-7543
Removed by vendor...
Fedora 23 : kdelibs3-3.5.10-71.fc23 (2015-6e50918d8e)
Security fix for CVE-2015-7543 in kdelibs3 the KDE 3 compatibility version of kdelibs: A temporary directory was being created insecurely using mktemp and mkdir, allowing an attacker to hijack the temporary directory and thus the inter-process communication IPC. This update fixes the temporary...
Fedora 22 : arts-1.5.10-30.fc22 (2015-8dd01b09a9)
Security fix for CVE-2015-7543 in arts the legacy aRts sound server: A temporary directory was being created insecurely using mktemp and mkdir, allowing an attacker to hijack the temporary directory and thus the inter- process communication IPC. This update fixes the temporary directory creation ...
Fedora 22 : kdelibs3-3.5.10-71.fc22 (2015-2f4b92ed2e)
Security fix for CVE-2015-7543 in kdelibs3 the KDE 3 compatibility version of kdelibs: A temporary directory was being created insecurely using mktemp and mkdir, allowing an attacker to hijack the temporary directory and thus the inter-process communication IPC. This update fixes the temporary...
Fedora Update for kdelibs3 FEDORA-2015-2
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for arts FEDORA-2015-8
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 366-1] arts security update
Package : arts Version : 1.5.9-3+deb6u1 CVE ID : CVE-2015-7543 It has been reported that arts uses the insecure mktemp function to create the temporary directory it uses to host user-specific sockets. It is thus possible for another user to hijack this temporary directory and gain IPC access it...