CVE-2004-1901
5.5MEDIUMPortage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.
Опубликовано: 12/31/2004Обновлено: 4/3/2025
Описание
Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles.
ИИ-АнализНа базе ИИ
Затронутые продукты
gentooportage
gentooportage
2.0.50
gentoolinux
1.4
gentoolinux
1.4
gentoolinux
1.4
Ссылки
- http://secunia.com/advisories/11305Broken LinkPatch
- http://security.gentoo.org/glsa/glsa-200404-01.xmlVendor Advisory
- http://www.securityfocus.com/bid/10060Broken LinkPatchThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15754Third Party AdvisoryVDB Entry
- http://secunia.com/advisories/11305Broken LinkPatch
- http://security.gentoo.org/glsa/glsa-200404-01.xmlVendor Advisory
- http://www.securityfocus.com/bid/10060Broken LinkPatchThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15754Third Party AdvisoryVDB Entry