9 matches found
EUVD-2020-3161
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-10737
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomed...
NewStart CGSL MAIN 6.02 : oddjob Vulnerability (NS-SA-2021-0063)
The remote NewStart CGSL host, running version MAIN 6.02, has oddjob packages installed that are affected by a vulnerability: - A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies...
Oracle Linux 8 : oddjob (ELSA-2020-4687)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4687 advisory. 0.34.5-3 - Support HOMEMODE from /etc/login.defs Resolves: rhbz1886362 0.34.5-2 - Add gating tests using idm:DL1 module stream and upstream tests Resolves:...
CVE-2020-10737
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the...
CVE-2020-10737
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the...
CVE-2020-10737
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the...
oddjob path traversal vulnerability
oddjob is a software package for D-Bus with public gateway interface functionality. A path traversal vulnerability exists in the mkhomedir tool in versions of oddjob prior to 0.34.5 and prior to 0.34.6, which stems from the fact that during the creation of a home directory, mkhomedir copies the...
CVE-2020-10737
A race condition was found in the mkhomedir tool shipped with the oddjob package. During the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the homedir path. This flaw allows an attacker to...