Lucene search
+L

7 matches found

openvas
openvas
added 2022/08/26 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-4315-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.1AI score0.00651EPSS
Exploits2References2
nvd
nvd
added 2020/04/22 10:15 p.m.28 views

CVE-2020-8833

Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs.protectedsymlinks is disabled, this can be exploited between the os.open and os.chown calls when the Apport cron script clears out crash...

5.6CVSS5.8AI score0.00344EPSS
Exploits1References3
cve
cve
added 2020/04/22 9:15 p.m.102 views

CVE-2020-8833

The CVE-2020-8833 issue affects Ubuntu’s Apport crash-report handling. A Time-of-check Time-of-use race between os.open and os.chown can allow a local attacker to change crash-file ownership to root when fs.protected_symlinks is disabled, via a symlink with the same name as a deleted file. The fi...

5.6CVSS5.2AI score0.00344EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2020/04/22 9:15 p.m.31 views

CVE-2020-8833 Apport race condition in crash report permissions

Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs.protectedsymlinks is disabled, this can be exploited between the os.open and os.chown calls when the Apport cron script clears out crash...

5.6CVSS6AI score0.00344EPSS
Exploits1References3
ubuntu
ubuntu
added 2020/04/02 12:55 a.m.118 views

USN-4315-1: Apport vulnerabilities

Maximilien Bourgeteau discovered that the Apport lock file was created with insecure permissions. This could allow a local attacker to escalate their privileges via a symlink attack. CVE-2020-8831 Maximilien Bourgeteau discovered a race condition in Apport when setting crash report permissions...

6.5CVSS5.4AI score0.00651EPSS
Exploits2
ubuntucve
ubuntucve
added 2020/04/02 12:0 a.m.27 views

CVE-2020-8833

Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs.protectedsymlinks is disabled, this can be exploited between the os.open and os.chown calls when the Apport cron script clears out crash...

5.6CVSS5.9AI score0.00344EPSS
Exploits1References3
nessus
nessus
added 2020/04/02 12:0 a.m.26 views

Ubuntu 16.04 LTS / 18.04 LTS : Apport vulnerabilities (USN-4315-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4315-1 advisory. Maximilien Bourgeteau discovered that the Apport lock file was created with insecure permissions. This could allow a local attacker to escala...

6.5CVSS5.7AI score0.00651EPSS
Exploits2References3
Rows per page
Query Builder