3 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-40299
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Singular before 4.3.1, a predictable /tmp pathname is used e.g., by sdb.cc, which allows local users to gain the privileges of other users via a procedure in...
Timeshift Code Execution Vulnerability
Timeshift is a Linux system restore tool. The product supports the creation of file system snapshots and provides features such as snapshot recovery. A security vulnerability exists in Timeshift versions prior to 20.03, which stems from the 'inittmp' function of the TeeJee.FileSystem.vala file...
Firefox: Predictable /tmp pathname use
Mozilla Firefox 3.6a1, 3.5.3, 3.5.2, and earlier 3.5.x versions, and 3.0.14 and earlier 2.x and 3.x versions, on Linux uses a predictable /tmp pathname for files selected from the Downloads window, which allows local users to replace an arbitrary downloaded file by placing a file in a /tmp locati...