Lucene search
Ubuntu.comUB:CVE-2021-25317HistoryMay 05, 2021 - 12:00 a.m.
CVE-2021-25317
2021-05-0500:00:00
ubuntu.com
ubuntu.com
8
0.0004 Low
EPSS
Percentile
5.2%
A Incorrect Default Permissions vulnerability in the packaging of cups of
SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE
OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local
attackers with control of the lp users to create files as root with 0644
permissions without the ability to set the content. This issue affects:
SUSE Linux Enterprise Server 11-SP4-LTSS cups versions prior to 1.3.9. SUSE
Manager Server 4.0 cups versions prior to 2.2.7. SUSE OpenStack Cloud
Crowbar 9 cups versions prior to 1.7.5. openSUSE Leap 15.2 cups versions
prior to 2.2.7. openSUSE Factory cups version 2.3.3op2-2.1 and prior
versions.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | in Debian and Ubuntu, /var/log/cups is owned by root:root |
Related
nessus
nessus
EulerOS Virtualization 2.9.0 : cups (EulerOS-SA-2021-2203)
2021-07-13 00:00:00
EulerOS Virtualization 2.9.1 : cups (EulerOS-SA-2021-2190)
2021-07-13 00:00:00
EulerOS 2.0 SP9 : cups (EulerOS-SA-2021-2264)
2021-08-09 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2021-2190)
2021-07-13 00:00:00
Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2021-2324)
2021-09-04 00:00:00
Fedora: Security Advisory for cups (FEDORA-2021-dc578ce534)
2021-05-06 00:00:00
prion
prion
Default configuration
2021-05-05 10:15:00
fedora
fedora
[SECURITY] Fedora 34 Update: cups-2.3.3op2-5.fc34
2021-05-06 01:03:21
[SECURITY] Fedora 32 Update: cups-2.3.3op2-5.fc32
2021-05-14 17:51:25
[SECURITY] Fedora 33 Update: cups-2.3.3op2-5.fc33
2021-05-10 01:08:38
suse
suse
Security update for cups (important)
2021-05-01 00:00:00
cvelist
cvelist
debiancve
debiancve
CVE-2021-25317
2021-05-05 10:15:00
redhatcve
redhatcve
CVE-2021-25317
2021-04-29 17:06:16
osv
osv
CVE-2021-25317
2021-05-05 10:15:08
cve
cve
CVE-2021-25317
2021-05-05 10:15:00