rpm package
opensuse/hardlink&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/hardlink&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2011-3632 | Hig | 7.1 | < 1.0.g50-1.7 | 1.0.g50-1.7 | Nov 26, 2019 | Hardlink before 0.1.2 operates on full file system objects path names which can allow a local attacker to use this flaw to conduct symlink attacks. | |
| CVE-2011-3631 | Hig | 8.8 | < 1.0.g50-1.7 | 1.0.g50-1.7 | Nov 26, 2019 | Hardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used. A remote attacker could provide a specially-crafted directory tree and t | |
| CVE-2011-3630 | Hig | 8.8 | < 1.0.g50-1.7 | 1.0.g50-1.7 | Nov 26, 2019 | Hardlink before 0.1.2 suffer from multiple stack-based buffer overflow flaws because of the way directory trees with deeply nested directories are processed. A remote attacker could provide a specially-crafted directory tree, and trick the local user into consolidating it, leadin |
- affected < 1.0.g50-1.7fixed 1.0.g50-1.7
Hardlink before 0.1.2 operates on full file system objects path names which can allow a local attacker to use this flaw to conduct symlink attacks.
- affected < 1.0.g50-1.7fixed 1.0.g50-1.7
Hardlink before 0.1.2 has multiple integer overflows leading to heap-based buffer overflows because of the way string lengths concatenation is done in the calculation of the required memory space to be used. A remote attacker could provide a specially-crafted directory tree and t
- affected < 1.0.g50-1.7fixed 1.0.g50-1.7
Hardlink before 0.1.2 suffer from multiple stack-based buffer overflow flaws because of the way directory trees with deeply nested directories are processed. A remote attacker could provide a specially-crafted directory tree, and trick the local user into consolidating it, leadin