4 matches found
CVE-2025-0374
When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted visibility, such as...
CVE-2025-0374
creationtimestamp| type| source ---|---|--- 2025-01-30 04:52:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113915508996299611 2025-01-30 05:15:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgwq454kn42p 2025-01-30 07:11:35+00:00| seen|...
CVE-2025-0374 Unprivileged access to system files
When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted visibility, such as...
FreeBSD-SA-25:03.etcupdate
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:03.etcupdate Security Advisory The FreeBSD Project Topic: Unprivileged access to system files Category: core Module: etcupdate Announced: 2025-01-29 Credits:...