VYPR

rpm package

opensuse/libqb&distro=openSUSE Leap 15.0

pkg:rpm/opensuse/libqb&distro=openSUSE%20Leap%2015.0

Vulnerabilities (1)

  • CVE-2019-12779Jun 7, 2019
    affected < 1.0.3+20171226.6d62b64-lp150.2.3.1fixed 1.0.3+20171226.6d62b64-lp150.2.3.1

    libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.