[SECURITY] Fedora 40 Update: calibre-7.17.0-3.fc40

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

[SECURITY] Fedora 25 Update: calibre-2.78.0-1.fc25

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

Calibre E-Book Reader Local Root

No description provided by source. / .80 Calibrer Assault Mount by zx2c4 Yesterday's assult mount used inotify to mount into /etc/pam.d. Today we expand the attack by adding a race toggler so we can mount from non-block devices. Enjoy. - zx2c4 2011-11-4 greets to djrbliss / include stdio.h includ...

Calibre E-Book Reader Local Root Exploit

No description provided by source. !/bin/sh .50-Calibrer Assault Mount by zx2c4 Calibre uses a suid mount helper, and like nearly all suid mount helpers that have come before it, it's badly broken. Let's go through Calibre's faulty code available at http://pastebin.com/auz9SULi and look at the...

Calibre E-Book Reader - Local Privilege Escalation (3)

Calibre E-Book Reader - Local Privilege Escalation 3 / .80 Calibrer Assault Mount by zx2c4 Yesterday's assult mount used inotify to mount into /etc/pam.d. Today we expand the attack by adding a race toggler so we can mount from non-block devices. Enjoy. - zx2c4 2011-11-4 greets to djrbliss /...

Calibre E-Book Reader - Local Privilege Escalation (3)

/ .80 Calibrer Assault Mount by zx2c4 Yesterday's assult mount used inotify to mount into /etc/pam.d. Today we expand the attack by adding a race toggler so we can mount from non-block devices. Enjoy. - zx2c4 2011-11-4 greets to djrbliss / include include include include include int mainint argc,...

Calibre E-Book Reader Local Root Race Condition Exploit

Exploit for linux platform in category local exploits !/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventin...

Calibre E-Book Reader Local Root

Exploit for linux platform in category local exploits / .80 Calibrer Assault Mount by zx2c4 Yesterday's assult mount used inotify to mount into /etc/pam.d. Today we expand the attack by adding a race toggler so we can mount from non-block devices. Enjoy. - zx2c4 2011-11-4 greets to djrbliss /...

Calibre E-Book Reader - Race Condition Privilege Escalation

Calibre E-Book Reader - Race Condition Privilege Escalation !/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes...

Calibre E-Book Reader Local Root

!/bin/sh .60-Calibrer Assault Mount by zx2c4 Yesterday we learned how Calibre's usage of execlp allowed us to override PATH and get root, in my ".50-Calibrer Assault Mount" exploit. Today we exploit a more fundumental issue with Calibre's mount helper -- namely, that it allows us to mount a vfat...

Calibre E-Book Reader - Local Privilege Escalation (2)

Exploit Title: .60-Calibrer Assault Mount: Another Calibre E-Book Reader Local Root Date: Nov 2, 2011 Author: zx2c4 Software Link: http://calibre-ebook.com/ Tested on: Gentoo Platform: Linux Category: Local CVE: pending !/bin/sh .60-Calibrer Assault Mount by zx2c4 Yesterday we learned how Calibre...

Calibre E-Book Reader - Race Condition Privilege Escalation

!/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventing symlinks and checking path prefixes. - djrbliss &...

Calibre E-Book Reader - Local Privilege Escalation (2)

Calibre E-Book Reader - Local Privilege Escalation 2 Exploit Title: .60-Calibrer Assault Mount: Another Calibre E-Book Reader Local Root Date: Nov 2, 2011 Author: zx2c4 Software Link: http://calibre-ebook.com/ Tested on: Gentoo Platform: Linux Category: Local CVE: pending !/bin/sh .60-Calibrer...

Calibre E-Book Reader Local Root Race Condition

!/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventing symlinks and checking path prefixes. - djrbliss &...

Calibre E-Book Reader Local Root

!/bin/sh .50-Calibrer Assault Mount by zx2c4 Calibre uses a suid mount helper, and like nearly all suid mount helpers that have come before it, it's badly broken. Let's go through Calibre's faulty code available at http://pastebin.com/auz9SULi and look at the array of silly things done, only one ...

Calibre E-Book Reader - Local Privilege Escalation (1)

Calibre E-Book Reader - Local Privilege Escalation 1 !/bin/sh .50-Calibrer Assault Mount by zx2c4 Calibre uses a suid mount helper, and like nearly all suid mount helpers that have come before it, it's badly broken. Let's go through Calibre's faulty code available at http://pastebin.com/auz9SULi...

Calibre E-Book Reader Local Root Exploit

Exploit for linux platform in category local exploits !/bin/sh .50-Calibrer Assault Mount by zx2c4 Calibre uses a suid mount helper, and like nearly all suid mount helpers that have come before it, it's badly broken. Let's go through Calibre's faulty code available at http://pastebin.com/auz9SULi...