85 matches found
CVE-2015-5200
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors...
DEBIAN-CVE-2015-5200
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors...
CVE-2015-5199
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
CVE-2015-5199
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
DEBIAN-CVE-2015-5199
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
CVE-2015-5198
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
DEBIAN-CVE-2015-5198
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
CVE-2015-5198
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
Design/Logic Flaw
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
Directory traversal
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
Design/Logic Flaw
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors...
CVE-2015-5200
CVE-2015-5200 pertains to libvdpau’s trace functionality in versions before 1.1.1. When libvdpau is used in a setuid/setgid application, local users can exploit this by writing to arbitrary files via unspecified vectors, as described across multiple advisories. Affected software is the libvdpau l...
CVE-2015-5198
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
CVE-2015-5199
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
CVE-2015-5198
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAUDRIVERPATH environment variable...
CVE-2015-5199
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAUDRIVER environment variable...
CVE-2015-5200
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors...
CVE-2015-5198
CVE-2015-5198 affects libvdpau up to 1.1.0 (pre-1.1.1). In scenarios where libvdpau is loaded by a setuid or setgid process, privilege escalation is possible due to improper handling of environment variables, notably VDPAU_DRIVER_PATH. Public documentation in connected sources confirms vulnerabil...
CVE-2015-5199
CVE-2015-5199 : A directory traversal vulnerability in libvdpau’s dlopen path allows local privilege escalation via the VDPAU_DRIVER environment variable, affecting libvdpau versions prior to 1.1.1. The incident is documented across multiple distributions (Fedora, SUSE/openSUSE, Mageia, Fedora up...
Fedora 23 : libvdpau-1.1.1-1.fc23 (2015-14850)
Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...