Candidate: CVE-2019-12779 PublicDate: 2019-06-07 20:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12779 https://github.com/ClusterLabs/libqb/releases/tag/v1.0.4 https://github.com/ClusterLabs/libqb/releases/tag/v1.0.5 Description: libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL. Ubuntu-Description: Notes: mdeslaur> 1.0.4 is problematic, 1.0.5 was released to fix it. mdeslaur> mitigated by symlink restrictions, low priority Bugs: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927159 https://github.com/USBGuard/usbguard/issues/277 https://github.com/ClusterLabs/libqb/issues/338 https://bugzilla.redhat.com/show_bug.cgi?id=1695948 Priority: low Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H [7.1 HIGH] Patches_libqb: upstream: https://github.com/ClusterLabs/libqb/commit/e322e98dc264bc5911d6fe1d371e55ac9f95a71e (master) upstream: https://github.com/ClusterLabs/libqb/commit/7cd7b06d52ac80c343f362c7e39ef75495439dfc (master) upstream: https://github.com/ClusterLabs/libqb/commit/6a4067c1d1764d93d255eccecfd8bf9f43cb0b4d (master) upstream: https://github.com/ClusterLabs/libqb/commit/269a0ca00717d2f43f03be5f7b034d93fb33f473 (1.0.x) upstream: https://github.com/ClusterLabs/libqb/commit/f950a5d3f8e07aa61bec3da91da01f06e762b138 (1.0.x) upstream: https://github.com/ClusterLabs/libqb/commit/65d6fb37a28f3b41f2e73c49214a4c9e3533f15a (1.0.x) upstream: https://github.com/ClusterLabs/libqb/commit/1699bf4e29a3ba42362c340520ed97efc313366d (1.0.x) Tags_libqb: symlink-restriction hardlink-restriction upstream_libqb: released (1.0.4-1) precise/esm_libqb: DNE trusty_libqb: ignored (out of standard support) trusty/esm_libqb: needed xenial_libqb: ignored (end of standard support, was needed) esm-infra/xenial_libqb: needed bionic_libqb: needed cosmic_libqb: ignored (reached end-of-life) disco_libqb: ignored (reached end-of-life) eoan_libqb: not-affected (1.0.5-1) focal_libqb: not-affected (1.0.5-1) groovy_libqb: not-affected (1.0.5-1) hirsute_libqb: not-affected (1.0.5-1) impish_libqb: not-affected (1.0.5-1) jammy_libqb: not-affected (1.0.5-1) devel_libqb: not-affected (1.0.5-1)