High severity7.1NVD Advisory· Published Jun 27, 2017· Updated May 13, 2026

CVE-2004-2778

Description

Ebuild in Gentoo may change directory and file permissions depending on the order of installed packages, which allows local users to read or write to restricted directories or execute restricted commands via navigating to the affected directories, or executing the affected commands.

Affected products

Gentoo/Portage
cpe:2.3:a:gentoo:portage:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.openwall.com/lists/oss-security/2017/01/28/7nvdMailing ListThird Party Advisory
bugs.gentoo.org/show_bug.cginvdVendor Advisory
bugs.gentoo.org/show_bug.cginvdVendor Advisory
bugs.gentoo.org/show_bug.cginvdVendor Advisory
bugs.gentoo.org/show_bug.cginvdVendor Advisory
bugs.gentoo.org/show_bug.cginvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.461
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000