rpm package
suse/amanda&distro=SUSE Linux Enterprise Server 11 SP4
pkg:rpm/suse/amanda&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-10729 | — | < 2.5.2.1-188.5.1 | 2.5.2.1-188.5.1 | Oct 24, 2018 | An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command inject |
- CVE-2016-10729Oct 24, 2018affected < 2.5.2.1-188.5.1fixed 2.5.2.1-188.5.1
An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command inject