Redhat Automatic_bug_reporting_tool
8 CVEs affecting Redhat Automatic_bug_reporting_tool. Latest disclosed: 2017-06-26. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-3315 | High | 7.8 | 2017-06-26 | Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink atta… |
CVE-2015-1870 | Medium | 5.5 | 2017-06-26 | The event scripts in Automatic Bug Reporting Tool (ABRT) uses world-readable permission on a copy of sosreport file in problem directories, which allows local… |
CVE-2015-3142 | Medium | 4.7 | 2017-06-26 | The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them… |
CVE-2015-5287 | | 2015-12-07 | The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlin… | |
CVE-2015-5273 | | 2015-12-07 | The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files… | |
CVE-2012-5660 | | 2013-03-12 | abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files… | |
CVE-2012-5659 | | 2013-03-12 | Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows lo… | |
CVE-2012-1106 | | 2012-07-03 | The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files… |