Lucene search
UbuntuUSN-1927-1HistoryAug 14, 2013 - 12:00 a.m.
libimobiledevice vulnerability
2013-08-1400:00:00
ubuntu.com
23
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Releases
- Ubuntu 13.04
- Ubuntu 12.10
Packages
- libimobiledevice - Library for communicating with iPhone and iPod Touch devices
Details
Paul Collins discovered that libimobiledevice incorrectly handled temporary
files. A local attacker could possibly use this issue to overwrite
arbitrary files and access device keys. In the default Ubuntu installation,
this issue should be mitigated by the Yama link restrictions.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.04 | noarch | libimobiledevice3 | < 1.1.4-1ubuntu6.2 | UNKNOWN |
| Ubuntu | 13.04 | noarch | libimobiledevice-dev | < 1.1.4-1ubuntu6.2 | UNKNOWN |
| Ubuntu | 13.04 | noarch | libimobiledevice-utils | < 1.1.4-1ubuntu6.2 | UNKNOWN |
| Ubuntu | 13.04 | noarch | libimobiledevice3-dbg | < 1.1.4-1ubuntu6.2 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-imobiledevice | < 1.1.4-1ubuntu6.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libimobiledevice3 | < 1.1.4-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libimobiledevice-dev | < 1.1.4-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libimobiledevice-utils | < 1.1.4-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libimobiledevice3-dbg | < 1.1.4-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-imobiledevice | < 1.1.4-1ubuntu3.2 | UNKNOWN |
References
Related
openvas
openvas
Fedora Update for libusbmuxd FEDORA-2014-9092
2014-08-31 00:00:00
Fedora Update for libimobiledevice FEDORA-2014-9092
2014-08-31 00:00:00
Mageia: Security Advisory (MGASA-2013-0251)
2022-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: libgpod-0.8.3-2.fc20
2014-08-30 03:54:19
[SECURITY] Fedora 20 Update: libusbmuxd-1.0.9-2.fc20
2014-08-30 03:54:19
[SECURITY] Fedora 20 Update: usbmuxd-1.0.9-0.4.c24463e.fc20
2014-08-30 03:54:19
prion
prion
Code injection
2014-01-19 18:02:00
cve
cve
CVE-2013-2142
2014-01-19 18:02:56
debiancve
debiancve
CVE-2013-2142
2014-01-19 18:02:56
mageia
mageia
Updated libimobiledevice packages fix CVE-2013-2142
2013-08-17 12:47:03
nessus
nessus
cvelist
cvelist
CVE-2013-2142
2014-01-19 16:00:00
nvd
nvd
CVE-2013-2142
2014-01-19 18:02:56
ubuntucve
ubuntucve
CVE-2013-2142
2013-06-04 00:00:00
securityvulns
securityvulns
libmobiledevices symbolic links vulnerability
2013-10-09 00:00:00
[USN-1927-1] libimobiledevice vulnerability
2013-10-09 00:00:00
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for USN-1927-1