CVE-2012-0878
Publication date 1 May 2012
Last updated 24 July 2024
Ubuntu priority
Paste Script 1.7.5 and earlier does not properly set group memberships during execution with root privileges, which might allow remote attackers to bypass intended file-access restrictions by leveraging a web application that uses the local filesystem.
Status
Package | Ubuntu Release | Status |
---|---|---|
python-pastescript | 11.10 oneiric | Not in release |
11.04 natty | Not in release | |
10.10 maverick | Not in release | |
10.04 LTS lucid | Not in release | |
8.04 LTS hardy | Not in release |