Lucene search
Ubuntu.comUB:CVE-2014-1838HistoryMar 11, 2014 - 12:00 a.m.
CVE-2014-1838
2014-03-1100:00:00
ubuntu.com
ubuntu.com
12
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
The (1) extract_keys_from_pdf and (2) fill_pdf functions in pdf_ext.py in
logilab-commons before 0.61.0 allows local users to overwrite arbitrary
files and possibly have other unspecified impact via a symlink attack on
/tmp/toto.fdf.
Bugs
Related
debiancve
debiancve
CVE-2014-1838
2014-03-11 19:37:00
cve
cve
CVE-2014-1838
2014-03-11 19:37:00
prion
prion
Design/Logic Flaw
2014-03-11 19:37:00
osv
osv
Improper Link Resolution Before File Access in logilab-commons
2022-05-14 02:09:22
PYSEC-2014-83
2014-03-11 19:37:00
github
github
Improper Link Resolution Before File Access in logilab-commons
2022-05-14 02:09:22
openvas
openvas
Fedora Update for python-logilab-common FEDORA-2014-3300
2014-03-20 00:00:00
Mageia: Security Advisory (MGASA-2014-0118)
2022-01-28 00:00:00
Fedora Update for pylint FEDORA-2014-3300
2014-03-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: pylint-1.1.0-1.fc20
2014-03-19 08:39:48
[SECURITY] Fedora 20 Update: python-logilab-common-0.61.0-1.fc20
2014-03-19 08:39:49
[SECURITY] Fedora 20 Update: python-astroid-1.0.1-2.fc20
2014-03-19 08:39:48
mageia
mageia
Updated python-logilab-common packages fix security vulnerabilities
2014-03-04 01:37:46
nessus
nessus
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.2%
Related for UB:CVE-2014-1838