How severe is CVE-2007-6249?

The severity of CVE-2007-6249 has not been assessed with CVSS v3.

CVE-2007-6249

Name: portage
Author: gentoo

NONE

etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original files, which might all

게시됨: 12/15/2007업데이트됨: 4/9/2025

설명

etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original files, which might allow local users to obtain sensitive information by reading the merge file.

AI 분석AI 기반

영향받는 제품

gentoolinux

gentooportage

참조

http://bugs.gentoo.org/show_bug.cgi?id=193589
Exploit
http://osvdb.org/42636
http://secunia.com/advisories/28094
http://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev
Exploit
http://www.gentoo.org/security/en/glsa/glsa-200712-11.xml
http://www.securityfocus.com/bid/26864
http://www.securitytracker.com/id?1019097
https://exchange.xforce.ibmcloud.com/vulnerabilities/39035
http://bugs.gentoo.org/show_bug.cgi?id=193589
Exploit
http://osvdb.org/42636
http://secunia.com/advisories/28094
http://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev
Exploit
http://www.gentoo.org/security/en/glsa/glsa-200712-11.xml
http://www.securityfocus.com/bid/26864
http://www.securitytracker.com/id?1019097
https://exchange.xforce.ibmcloud.com/vulnerabilities/39035