VYPR

Opentmpfiles

by Openrc

Source repositories

CVEs (2)

  • CVE-2017-18188MedFeb 14, 2018
    risk 0.36cvss 5.5epss 0.00

    OpenRC opentmpfiles through 0.1.3, when the fs.protected_hardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run.

  • CVE-2017-18925Oct 26, 2020
    risk 0.00cvss epss 0.00

    opentmpfiles through 0.3.1 allows local users to take ownership of arbitrary files because d entries are mishandled and allow a symlink attack.