VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026

CVE-2005-4772

CVE-2005-4772

Description

liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013.

Affected products

25
  • SUSE S.A./Suse Linux Openexchange Server
    cpe:2.3:a:suse:suse_linux_openexchange_server:4.0:*:*:*:*:*:*:*
  • SUSE S.A./Suse Linux School Server
    cpe:2.3:a:suse:suse_linux_school_server:gold:*:*:*:*:*:*:*
  • SUSE S.A./Suse Linux Standard Server
    cpe:2.3:a:suse:suse_linux_standard_server:8.0:*:*:*:*:*:*:*
  • SUSE S.A./Suse Sled Beagle
    cpe:2.3:a:suse:suse_sled_beagle:10.0:*:*:*:*:*:*:*
  • SUSE S.A./Linux21 versions
    cpe:2.3:o:suse:suse_linux:1.0:*:desktop:*:*:*:*:*+ 20 more
    • cpe:2.3:o:suse:suse_linux:1.0:*:desktop:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8.0:*:retail_solution:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8.2:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8.2:*:professional:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:professional:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.1:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.1:*:professional:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.1:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.2:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.2:*:professional:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.2:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.3:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.3:*:professional:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.3:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:10.0:*:oss:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:10.0:*:professional:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.