CVE-2016-6153 - OpenCVE

os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Sqlite	Sqlite
Opensuse	Leap
Fedoraproject	Fedora

Configuration 1 [-]

cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

References

Link	Resource
http://lists.opensuse.org/opensuse-updates/2016-08/msg00053.html	Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/07/01/1	Patch Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/07/01/2	Third Party Advisory
http://www.securityfocus.com/bid/91546	Third Party Advisory
http://www.sqlite.org/cgi/src/info/67985761aa93fb61	Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00022.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGQTH7V45QVHFDXJAEECHEO3HHD644WZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/
https://usn.ubuntu.com/4019-1/
https://usn.ubuntu.com/4019-2/
https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt	Third Party Advisory
https://www.sqlite.org/releaselog/3_13_0.html	Release Notes
https://www.tenable.com/security/tns-2016-20

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2016-09-26T00:00:00

Updated: 2023-05-22T00:00:00

Reserved: 2016-07-01T00:00:00

Link: CVE-2016-6153

JSON object: View

NVD Information

Status : Modified

Published: 2016-09-26T16:59:03.523

Modified: 2023-11-07T02:33:53.957

Link: CVE-2016-6153

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2016-6153", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2023-05-22T00:00:00", "dateReserved": "2016-07-01T00:00:00", "datePublished": "2016-09-26T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-05-22T00:00:00"}, "descriptions": [{"lang": "en", "value": "os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.tenable.com/security/tns-2016-20"}, {"name": "openSUSE-SU-2016:2041", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00053.html"}, {"url": "https://www.sqlite.org/releaselog/3_13_0.html"}, {"name": "[oss-security] 20160701 Re: SQLite Tempdir Selection Vulnerability", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2016/07/01/2"}, {"name": "91546", "tags": ["vdb-entry"], "url": "http://www.securityfocus.com/bid/91546"}, {"url": "http://www.sqlite.org/cgi/src/info/67985761aa93fb61"}, {"name": "FEDORA-2016-0138339b54", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGQTH7V45QVHFDXJAEECHEO3HHD644WZ/"}, {"url": "https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt"}, {"name": "[oss-security] 20160701 SQLite Tempdir Selection Vulnerability", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2016/07/01/1"}, {"name": "USN-4019-1", "tags": ["vendor-advisory"], "url": "https://usn.ubuntu.com/4019-1/"}, {"name": "USN-4019-2", "tags": ["vendor-advisory"], "url": "https://usn.ubuntu.com/4019-2/"}, {"name": "FEDORA-2019-49f80a78bc", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/"}, {"name": "[debian-lts-announce] 20230522 [SECURITY] [DLA 3431-1] sqlite security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00022.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}], "datePublic": "2016-07-01T00:00:00"}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*", "matchCriteriaId": "575E53A9-1BF3-4059-A69D-11A46817D040", "versionEndIncluding": "3.12.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*", "matchCriteriaId": "C729D5D1-ED95-443A-9F53-5D7C2FD9B80C", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*", "matchCriteriaId": "4863BE36-D16A-4D75-90D9-FD76DB5B48B7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files."}, {"lang": "es", "value": "os_unix.c en SQLite en versiones anteriores a 3.13.0 no implementa correctamente el algoritmo de b\u00fasqueda de directorio temporal, lo que podr\u00eda permitir a usuarios locales obtener informaci\u00f3n sensible, provocar una denegaci\u00f3n de servicio (ca\u00edda de aplicaci\u00f3n) o tener otro impacto no especificado aprovechando el uso de directorio de trabajo actual para archivos temporales."}], "id": "CVE-2016-6153", "lastModified": "2023-11-07T02:33:53.957", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.0"}, "exploitabilityScore": 2.5, "impactScore": 3.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-09-26T16:59:03.523", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00053.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/07/01/1"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2016/07/01/2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.securityfocus.com/bid/91546"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.sqlite.org/cgi/src/info/67985761aa93fb61"}, {"source": "cve@mitre.org", "url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00022.html"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGQTH7V45QVHFDXJAEECHEO3HHD644WZ/"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU4NZ6DDU4BEM3ACM3FM6GLEPX56ZQXK/"}, {"source": "cve@mitre.org", "url": "https://usn.ubuntu.com/4019-1/"}, {"source": "cve@mitre.org", "url": "https://usn.ubuntu.com/4019-2/"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "https://www.sqlite.org/releaselog/3_13_0.html"}, {"source": "cve@mitre.org", "url": "https://www.tenable.com/security/tns-2016-20"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}