Unrated severityNVD Advisory· Published Oct 5, 2005· Updated Apr 16, 2026

CVE-2005-3148

Description

StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.

Affected products

Storebackup/Storebackup29 versions
cpe:2.3:a:storebackup:storebackup:1.1:*:*:*:*:*:*:*+ 28 more
- cpe:2.3:a:storebackup:storebackup:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.12:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.12.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.12.2:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.13:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.14:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.15:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.16:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.16.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.16.2:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.17:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.18:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.18.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.18.2:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.18.3:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.18.4:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.7:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.8:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:storebackup:storebackup:1.9.1:*:*:*:*:*:*:*
SUSE S.A./Linux
cpe:2.3:o:suse:suse_linux:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sourceforge.net/project/shownotes.phpnvdPatchVendor Advisory
www.securityfocus.com/advisories/9384nvdVendor Advisory
bugs.debian.org/cgi-bin/bugreport.cginvd
secunia.com/advisories/17025nvd
secunia.com/advisories/19489nvd
www.us.debian.org/security/2006/dsa-1022nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000