Lucene search
Gentoo FoundationMGASA-2014-0129HistoryMar 15, 2014 - 8:24 p.m.
Updated udisks and udisks2 packages fixes security vulnerability
2014-03-1520:24:04
Gentoo Foundation
advisories.mageia.org
16
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.1%
A flaw was found in the way udisks and udisks2 handled long path names. A malicious, local user could use this flaw to create a specially-crafted directory structure that could lead to arbitrary code execution with the privileges of the udisks daemon (root) (CVE-2014-0004).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | udisks | <Β 1.0.4-10.1 | udisks-1.0.4-10.1.mga3 |
| Mageia | 3 | noarch | udisks2 | <Β 2.0.1-2.1 | udisks2-2.0.1-2.1.mga3 |
| Mageia | 4 | noarch | udisks | <Β 1.0.4-11.1 | udisks-1.0.4-11.1.mga4 |
| Mageia | 4 | noarch | udisks2 | <Β 2.1.1-2.1 | udisks2-2.1.1-2.1.mga4 |
Related
nessus
nessus
Fedora 20 : udisks2-2.1.2-2.fc20 (2014-3723)
2014-03-17 00:00:00
Fedora 19 : udisks2-2.1.2-2.fc19 (2014-3714)
2014-03-20 00:00:00
CentOS 6 : udisks (CESA-2014:0293)
2014-03-14 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201405-01
2015-09-29 00:00:00
Fedora Update for udisks2 FEDORA-2014-3714
2014-03-20 00:00:00
Fedora Update for udisks2 FEDORA-2014-3723
2014-03-17 00:00:00
securityvulns
securityvulns
[slackware-security] udisks, udisks2 (SSA:2014-070-01)
2014-03-13 00:00:00
udisk buffer overflow
2014-03-13 00:00:00
slackware
slackware
[slackware-security] udisks, udisks2
2014-03-11 07:37:05
cvelist
cvelist
CVE-2014-0004
2014-03-11 15:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: udisks2-2.1.2-2.fc19
2014-03-19 08:50:41
[SECURITY] Fedora 19 Update: udisks-1.0.4-12.fc19
2014-04-09 01:04:03
[SECURITY] Fedora 20 Update: udisks-1.0.4-13.fc20
2014-03-31 02:11:05
debian
debian
[SECURITY] [DSA 2872-1] udisks security update
2014-03-10 15:23:40
gentoo
gentoo
udisks: Arbitrary code execution
2014-05-02 00:00:00
centos
centos
udisks security update
2014-03-13 21:38:21
prion
prion
Stack overflow
2014-03-11 19:37:00
debiancve
debiancve
CVE-2014-0004
2014-03-11 19:37:03
seebug
seebug
UdisksεUdisks2ιΏθ·―εΎεζ¬ε°ζ ηΌε²εΊζΊ’εΊζΌζ΄
2014-03-13 00:00:00
cve
cve
CVE-2014-0004
2014-03-11 19:37:03
osv
osv
udisks - buffer overflow
2014-03-10 00:00:00
libudisks2-0-2.1.8-1.1 on GA media
2024-06-15 00:00:00
udisks-1.0.5-5.10 on GA media
2024-06-15 00:00:00
ubuntu
ubuntu
UDisks vulnerability
2014-03-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-0004
2014-03-10 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 08:58:31
oraclelinux
oraclelinux
udisks security update
2014-03-13 00:00:00
redhat
redhat
(RHSA-2014:0293) Important: udisks security update
2014-03-13 00:00:00
nvd
nvd
CVE-2014-0004
2014-03-11 19:37:03
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
5.1%
Related for MGASA-2014-0129