← Zuruck zu CVEs

CVE-2007-6249

N/A

Beschreibung

etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original files, which might allow local users to obtain sensitive information by reading the merge file.

CVE Details

CVSS v3.1 BewertungN/A

Veroffentlicht12/15/2007

Zuletzt geandert4/23/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

gentoo:linuxgentoo:portage

Schwachen (CWE)

CWE-200

Referenzen

http://bugs.gentoo.org/show_bug.cgi?id=193589(cve@mitre.org)

http://osvdb.org/42636(cve@mitre.org)

http://secunia.com/advisories/28094(cve@mitre.org)

http://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev(cve@mitre.org)

http://www.gentoo.org/security/en/glsa/glsa-200712-11.xml(cve@mitre.org)

http://www.securityfocus.com/bid/26864(cve@mitre.org)

http://www.securitytracker.com/id?1019097(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/39035(cve@mitre.org)

http://bugs.gentoo.org/show_bug.cgi?id=193589(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/42636(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/28094(af854a3a-2127-422b-91ae-364da2661108)

http://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev(af854a3a-2127-422b-91ae-364da2661108)

http://www.gentoo.org/security/en/glsa/glsa-200712-11.xml(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/26864(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1019097(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/39035(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.