openSUSE 15 Security Update : pcmanfm (openSUSE-SU-2022:10001-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10001-1 advisory. - PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service application unavailability. CVE-2017-893...

Mageia: Security Advisory (MGASA-2017-0154)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2017-0154 Updated pcmanfm packages fix security vulnerability

PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service application unavailability. CVE-2017-8934...

Updated pcmanfm packages fix security vulnerability

PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service application unavailability. CVE-2017-8934...

Fedora Update for pcmanfm FEDORA-2017-3f2d5790d2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for menu-cache FEDORA-2017-3f2d5790d2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for menu-cache FEDORA-2017-6950ea5d05

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-7498

CVE-2017-8934 affects PCManFM (LXDE components). The socket/file placed in /tmp by PCManFM 1.2.5 before the fix is predictable and world-writable, enabling a local attacker to cause a denial-of-service or redirect requests to another PCManFM instance. Remediation: upgrade to the fixed version (e....

CVE-2017-8934

PCManFM 1.2.5 insecurely uses /tmp for a socket file, enabling a local attacker to cause a denial of service (application unavailability). Multiple connected advisories confirm the issue and provide remediation: upgrade to pcmanfm 1.2.5-2 (or later) where the upstream fix was applied; Arch Linux ...