Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3500HistoryOct 01, 2012 - 12:55 a.m.
CVE-2012-3500
2012-10-0100:55:01
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
1.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
EPSS
0
Percentile
10.1%
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | devscripts | < 2.12.2 | devscripts_2.12.2_all.deb |
| Debian | 11 | all | devscripts | < 2.12.2 | devscripts_2.12.2_all.deb |
| Debian | 999 | all | devscripts | < 2.12.2 | devscripts_2.12.2_all.deb |
| Debian | 13 | all | devscripts | < 2.12.2 | devscripts_2.12.2_all.deb |
Related
openvas
openvas
Fedora Update for rpmdevtools FEDORA-2012-13234
2012-09-17 00:00:00
Fedora Update for rpmdevtools FEDORA-2012-13263
2012-09-17 00:00:00
Fedora Update for rpmdevtools FEDORA-2012-13263
2012-09-17 00:00:00
nessus
nessus
Fedora 16 : rpmdevtools-8.3-1.fc16 (2012-13263)
2012-09-12 00:00:00
Mandriva Linux Security Advisory : rpmdevtools (MDVSA-2013:123)
2013-04-20 00:00:00
prion
prion
Design/Logic Flaw
2012-10-01 00:55:00
ubuntucve
ubuntucve
CVE-2012-3500
2012-09-03 00:00:00
cvelist
cvelist
CVE-2012-3500
2012-10-01 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: rpmdevtools-8.3-1.fc17
2012-09-12 00:24:49
[SECURITY] Fedora 18 Update: rpmdevtools-8.3-1.fc18
2012-09-17 23:50:02
[SECURITY] Fedora 16 Update: rpmdevtools-8.3-1.fc16
2012-09-12 00:33:54
nvd
nvd
CVE-2012-3500
2012-10-01 00:55:01
cve
cve
CVE-2012-3500
2012-10-01 00:55:01
osv
osv
rpmdevtools-8.10-7.5 on GA media
2024-06-15 00:00:00
devscripts - multiple
2012-09-15 00:00:00
debian
debian
[SECURITY] [DSA 2549-1] devscripts security update
2012-09-15 18:09:17
ubuntu
ubuntu
devscripts vulnerabilities
2012-10-02 00:00:00
CVSS2
1.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
EPSS
0
Percentile
10.1%
Related for DEBIANCVE:CVE-2012-3500