rpm package

opensuse/aide&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/aide&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-54389	—	< 0.19.2-1.1	0.19.2-1.1	Aug 14, 2025	AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the
CVE-2025-54409	—	< 0.19.2-1.1	0.19.2-1.1	Aug 14, 2025	AIDE is an advanced intrusion detection environment. From versions 0.13 to 0.19.1, there is a null pointer dereference vulnerability in AIDE. An attacker can crash the program during report printing or database listing after setting extended file attributes with an empty attribut
CVE-2021-45417	—	< 0.17.4-1.1	0.17.4-1.1	Jan 20, 2022	AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.

CVE-2025-54389Aug 14, 2025
affected < 0.19.2-1.1fixed 0.19.2-1.1
AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the
CVE-2025-54409Aug 14, 2025
affected < 0.19.2-1.1fixed 0.19.2-1.1
AIDE is an advanced intrusion detection environment. From versions 0.13 to 0.19.1, there is a null pointer dereference vulnerability in AIDE. An attacker can crash the program during report printing or database listing after setting extended file attributes with an empty attribut
CVE-2021-45417Jan 20, 2022
affected < 0.17.4-1.1fixed 0.17.4-1.1
AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.