7 matches found
SUSE CVE-2017-8108
Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly gain privileges via a symlink attack on a temporary file...
Amazon Linux AMI : lynis (ALAS-2017-847)
Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly gain privileges via a symlink attack on a temporary file. CVE-2017-8108 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI...
Medium: lynis
Issue Overview: Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly gain privileges via a symlink attack on a temporary file. CVE-2017-8108 Affected Packages: lynis Issue Correction: Run yum update lynis or yum update --advisory ALAS-2017-847 to updat...
openSUSE Security Update : lynis (openSUSE-2017-705)
This update for lynis fixes the following issues : Lynis 2.5.1 : - Improved detection of SSL certificate files - Minor changes to improve logging and results - Firewall tests: Determine if CSF is in testing mode The Update also includes changes from Lynis 2.5.0 : - CVE-2017-8108: symlink attack m...
CVE-2017-8108
CVE-2017-8108 affects Lynis before 2.5.0. Unspecified tests in Lynis can be exploited via a symlink attack on a temporary file to overwrite arbitrary files or gain local privileges. References in multiple disclosures (Fedora/OpenSUSE/Amazon Linux/Open Source advisories) indicate the issue permits...
Fedora 25 : lynis (2017-8d625a8d2b)
Update to 2.5.0 / https://cisofy.com/security/cve/cve-2017-8108/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
[ASA-201705-20] lynis: arbitrary file overwrite
Arch Linux Security Advisory ASA-201705-20 ========================================== Severity: High Date : 2017-05-22 CVE-ID : CVE-2017-8108 Package : lynis Type : arbitrary file overwrite Remote : No Link : https://security.archlinux.org/AVG-278 Summary ======= The package lynis before version...