Lucene search
Ubuntu.comUB:CVE-2016-4036HistoryApr 18, 2016 - 12:00 a.m.
CVE-2016-4036
2016-04-1800:00:00
ubuntu.com
ubuntu.com
8
0.0004 Low
EPSS
Percentile
5.2%
The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux
Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which
allows local users to obtain sensitive information by reading files in the
directory.
Bugs
- <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835223>
- <https://bugzilla.suse.com/show_bug.cgi?id=770619>
Notes
| Author | Note |
|---|---|
| mdeslaur | description mentions SUSE, but debian/ubuntu package has similar issue. |
Related
debiancve
debiancve
CVE-2016-4036
2016-04-18 14:59:00
cvelist
cvelist
CVE-2016-4036
2016-04-18 14:00:00
prion
prion
Directory traversal
2016-04-18 14:59:00
redhatcve
redhatcve
CVE-2016-4036
2016-08-26 09:48:44
cve
cve
CVE-2016-4036
2016-04-18 14:59:00
nessus
nessus
Debian DSA-3654-1 : quagga - security update
2016-08-26 00:00:00
Debian DLA-601-1 : quagga security update
2016-08-29 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Quagga vulnerabilities (USN-3102-1)
2016-10-14 00:00:00
debian
debian
[SECURITY] [DSA 3654-1] quagga security update
2016-08-26 04:04:13
[SECURITY] [DSA 3654-1] quagga security update
2016-08-26 04:03:55
[SECURITY] [DLA 601-1] quagga security update
2016-08-27 15:33:09
openvas
openvas
Ubuntu: Security Advisory (USN-3102-1)
2016-10-14 00:00:00
Debian: Security Advisory (DLA-601-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3654-1 (quagga - security update)
2016-08-26 00:00:00
ubuntu
ubuntu
Quagga vulnerabilities
2016-10-13 00:00:00
osv
osv
quagga - security update
2016-08-26 00:00:00
quagga - security update
2016-08-27 00:00:00