libimobiledevice vulnerability

2013-08-1400:00:00

ubuntu.com

CVSS2

3.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

Releases

Ubuntu 13.04
Ubuntu 12.10

Packages

libimobiledevice - Library for communicating with iPhone and iPod Touch devices

Details

Paul Collins discovered that libimobiledevice incorrectly handled temporary
files. A local attacker could possibly use this issue to overwrite
arbitrary files and access device keys. In the default Ubuntu installation,
this issue should be mitigated by the Yama link restrictions.

OSVersionArchitecturePackageVersionFilename
Ubuntu13.04noarchlibimobiledevice3< 1.1.4-1ubuntu6.2UNKNOWN
Ubuntu13.04noarchlibimobiledevice-dev< 1.1.4-1ubuntu6.2UNKNOWN
Ubuntu13.04noarchlibimobiledevice-utils< 1.1.4-1ubuntu6.2UNKNOWN
Ubuntu13.04noarchlibimobiledevice3-dbg< 1.1.4-1ubuntu6.2UNKNOWN
Ubuntu13.04noarchpython-imobiledevice< 1.1.4-1ubuntu6.2UNKNOWN
Ubuntu12.10noarchlibimobiledevice3< 1.1.4-1ubuntu3.2UNKNOWN
Ubuntu12.10noarchlibimobiledevice-dev< 1.1.4-1ubuntu3.2UNKNOWN
Ubuntu12.10noarchlibimobiledevice-utils< 1.1.4-1ubuntu3.2UNKNOWN
Ubuntu12.10noarchlibimobiledevice3-dbg< 1.1.4-1ubuntu3.2UNKNOWN
Ubuntu12.10noarchpython-imobiledevice< 1.1.4-1ubuntu3.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	13.04	noarch	libimobiledevice3	< 1.1.4-1ubuntu6.2	UNKNOWN
Ubuntu	13.04	noarch	libimobiledevice-dev	< 1.1.4-1ubuntu6.2	UNKNOWN
Ubuntu	13.04	noarch	libimobiledevice-utils	< 1.1.4-1ubuntu6.2	UNKNOWN
Ubuntu	13.04	noarch	libimobiledevice3-dbg	< 1.1.4-1ubuntu6.2	UNKNOWN
Ubuntu	13.04	noarch	python-imobiledevice	< 1.1.4-1ubuntu6.2	UNKNOWN
Ubuntu	12.10	noarch	libimobiledevice3	< 1.1.4-1ubuntu3.2	UNKNOWN
Ubuntu	12.10	noarch	libimobiledevice-dev	< 1.1.4-1ubuntu3.2	UNKNOWN
Ubuntu	12.10	noarch	libimobiledevice-utils	< 1.1.4-1ubuntu3.2	UNKNOWN
Ubuntu	12.10	noarch	libimobiledevice3-dbg	< 1.1.4-1ubuntu3.2	UNKNOWN
Ubuntu	12.10	noarch	python-imobiledevice	< 1.1.4-1ubuntu3.2	UNKNOWN