High severity7.8NVD Advisory· Published Jun 26, 2017· Updated May 13, 2026
CVE-2015-3315
CVE-2015-3315
Description
Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on (1) /var/tmp/abrt/*/maps, (2) /tmp/jvm-*/hs_error.log, (3) /proc/*/exe, (4) /etc/os-release in a chroot, or (5) an unspecified root directory related to librpm.
Affected products
1- cpe:2.3:a:redhat:automatic_bug_reporting_tool:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- github.com/abrt/abrt/commit/17cb66b13997b0159b4253b3f5722db79f476d68nvdPatchThird Party Advisory
- github.com/abrt/abrt/commit/4f2c1ddd3e3b81d2d5146b883115371f1cada9f9nvdPatchThird Party Advisory
- github.com/abrt/abrt/commit/80408e9e24a1c10f85fd969e1853e0f192157f92nvdPatchThird Party Advisory
- github.com/abrt/abrt/commit/d6e2f6f128cef4c21cb80941ae674c9842681aa7nvdPatchThird Party Advisory
- rhn.redhat.com/errata/RHSA-2015-1083.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2015/04/14/4nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2015/04/16/12nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/75117nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party AdvisoryVDB Entry
- rhn.redhat.com/errata/RHSA-2015-1210.htmlnvd
- www.exploit-db.com/exploits/44097/nvd
News mentions
0No linked articles in our index yet.