93 matches found
CVE-1999-0730
The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack...
EUVD-2015-1476
Malware in sbrugna...
EUVD-2003-0639
Malware in sbrugna...
EUVD-2018-13836
Malware in sbrugna...
EUVD-1999-0711
Malware in sbrugna...
EUVD-2003-0614
Malware in sbrugna...
EUVD-2001-1312
Malware in sbrugna...
CVE-2018-25078
man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...
CVE-2018-25078 affecting package man-db 2.8.4-5
CVE-2018-25078 affecting package man-db 2.8.4-5. This CVE either no longer is or was never applicable...
Advisory ROSA-SA-2024-2432
Software: man-db 2.7.6.1 OS: ROSA Virtualization 2.1 packageevrstring: man-db-2.7.6.1 CVE-ID: CVE-2018-25078 BDU-ID: None CVE-Crit: N/A CVE-DESC.: man-db in Gentoo allows local users with access to the man user account to gain root privileges, because /usr/bin/mandb is executed by the root user,...
Debian: Security Advisory (DLA-3731-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3731-1] man-db: fix sandboxing issues
Debian LTS Advisory DLA-3731-1 [email protected] https://www.debian.org/lts/security/ Colin Watson February 01, 2024 https://wiki.debian.org/LTS Package : man-db Version : 2.8.5-2+deb10u1 CVE ID : Debian Bug : 926450 948238 1061870 man-db provides the "man" command used for reading manu...
Debian dla-3731 : man-db - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3731 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3731-1 [email protected] https://www.debian.org/lts/security/...
man-db: privilege escalation
Background man-db is a man replacement that utilizes BerkeleyDB instead of flat files. Description A root privilege escalation through setuid executable and cron job has been discovered in man-db. Please review the CVE identifier referenced below for details. Impact A local user with access to th...
GLSA-202310-08 : man-db: privilege escalation
The remote host is affected by the vulnerability described in GLSA-202310-08 man-db: privilege escalation - man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owne...
Code injection
man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...
CVE-2018-25078
man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...
CVE-2018-25078
man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...
CVE-2018-25078
The CVE-2018-25078 issue affects man-db prior to 2.8.5 on Gentoo. Root privileges can be gained because /usr/bin/mandb is executed by root but not owned by root, and ownership can allow stripping of setuid/setgid bits. The vulnerability is described across multiple sources (e.g., Gentoo GLSA 2023...
CVE-2018-25078
man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...