VYPR

etcupdate

by FreeBSD

CVEs (1)

  • CVE-2025-0374MedJan 30, 2025
    risk 0.42cvss 6.5epss 0.00

    When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted…