Lucene search
K

138 matches found

UbuntuCve
UbuntuCve
added 2019/06/07 8:29 p.m.18 views

CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

7.1CVSS6.9AI score0.00655EPSS
Exploits1References3
NVD
NVD
added 2019/06/07 8:29 p.m.15 views

CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

7.1CVSS6.6AI score0.00655EPSS
Exploits1References10
Prion
Prion
added 2019/06/07 8:29 p.m.10 views

Design/Logic Flaw

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

6.6CVSS6.5AI score0.00655EPSS
Exploits1References10Affected Software1
OSV
OSV
added 2019/06/07 8:29 p.m.14 views

CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

7.1CVSS6.5AI score
Exploits0References10
OSV
OSV
added 2019/06/07 8:29 p.m.2 views

DEBIAN-CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

7.1CVSS6.7AI score0.00655EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2019/06/07 7:44 p.m.18 views

CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

7.1CVSS6.8AI score0.00655EPSS
Exploits1
CVE
CVE
added 2019/06/07 7:44 p.m.347 views

CVE-2019-12779

CVE-2019-12779 affects libqb prior to 1.0.5, where IPC/tmp files are created with predictable names under /dev/shm and /tmp without O_EXCL, enabling local users to perform symlink attacks and overwrite arbitrary files. The vulnerability is local in scope with impact on integrity and availability ...

7.1CVSS6.5AI score0.00655EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2019/06/07 7:44 p.m.15 views

CVE-2019-12779

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames under /dev/shm and /tmp without OEXCL...

6.6AI score0.00655EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2019/05/21 12:0 a.m.11 views

Amazon Linux 2 : libqb (ALAS-2019-1210)

A flaw was found in libqb. Insecure handling of temporary files could be exploited by a local attacker to overwrite privileged system files. Upstream issue : https://github.com/ClusterLabs/libqb/issues/338 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

5.3AI score
Exploits0References1
Amazon
Amazon
added 2019/05/16 12:0 a.m.20 views

Medium: libqb

Issue Overview: A flaw was found in libqb. Insecure handling of temporary files could be exploited by a local attacker to overwrite privileged system files. Upstream issue: https://github.com/ClusterLabs/libqb/issues/338 Affected Packages: libqb Note: This advisory is applicable to Amazon Linux 2...

7.1CVSS7AI score0.00655EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/05/14 12:0 a.m.19 views

Fedora Update for libqb FEDORA-2019-e2d5de3342

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2019/05/13 2:12 a.m.23 views

[SECURITY] Fedora 28 Update: libqb-1.0.5-1.fc28

libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...

2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.14 views

Fedora 28 : libqb (2019-e2d5de3342)

Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

5.5AI score
Exploits0References1
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.56 views

Fedora Update for libqb FEDORA-2019-d5b80d05b9

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/06 12:0 a.m.10 views

Fedora 29 : libqb (2019-d5b80d05b9)

Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

5.5AI score
Exploits0References1
Fedora
Fedora
added 2019/05/04 2:26 a.m.15 views

[SECURITY] Fedora 29 Update: libqb-1.0.5-1.fc29

libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...

2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.14 views

Fedora 30 : libqb (2019-67e684044e)

Security fix for 'Insecure treatment of IPC temporary files' CVE pending Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

5.5AI score
Exploits0References1
Fedora
Fedora
added 2019/04/30 1:30 a.m.14 views

[SECURITY] Fedora 30 Update: libqb-1.0.5-1.fc30

libqb provides high-performance, reusable features for client-server architecture, such as logging, tracing, inter-process communication IPC, and polling...

2AI score
Exploits0
Rows per page
Query Builder