VYPR

rpm package

suse/libqb&distro=SUSE Linux Enterprise High Availability Extension 12 SP4

pkg:rpm/suse/libqb&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP4

Vulnerabilities (1)

  • CVE-2019-12779Jun 7, 2019
    affected < 1.0.3+20171226.6d62b64-4.3.1fixed 1.0.3+20171226.6d62b64-4.3.1

    libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.