138 matches found
CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
Design/Logic Flaw
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
DEBIAN-CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
CVE-2019-12779
CVE-2019-12779 affects libqb prior to 1.0.5, where IPC/tmp files are created with predictable names under /dev/shm and /tmp without O_EXCL, enabling local users to perform symlink attacks and overwrite arbitrary files. The vulnerability is local in scope with impact on integrity and availability ...
CVE-2019-12779
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...
Amazon Linux 2 : libqb (ALAS-2019-1210)
A flaw was found in libqb. Insecure handling of temporary files could be exploited by a local attacker to overwrite privileged system files. Upstream issue : https://github.com/ClusterLabs/libqb/issues/338 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...
Medium: libqb
Issue Overview: A flaw was found in libqb. Insecure handling of temporary files could be exploited by a local attacker to overwrite privileged system files. Upstream issue: https://github.com/ClusterLabs/libqb/issues/338 Affected Packages: libqb Note: This advisory is applicable to Amazon Linux 2...
Fedora Update for libqb FEDORA-2019-e2d5de3342
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 28 Update: libqb-1.0.5-1.fc28
libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...
Fedora 28 : libqb (2019-e2d5de3342)
Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora Update for libqb FEDORA-2019-d5b80d05b9
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 29 : libqb (2019-d5b80d05b9)
Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
[SECURITY] Fedora 29 Update: libqb-1.0.5-1.fc29
libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...
Fedora 30 : libqb (2019-67e684044e)
Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
[SECURITY] Fedora 30 Update: libqb-1.0.5-1.fc30
libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...