In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1117592 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microfocus
Published: 2019-01-07T00:00:00
Updated: 2021-01-06T16:15:51
Reserved: 2018-10-03T00:00:00
Link: CVE-2018-17955
JSON object: View
NVD Information
Status : Modified
Published: 2019-03-15T20:29:00.557
Modified: 2023-11-07T02:54:35.933
Link: CVE-2018-17955
JSON object: View
Redhat Information
No data.