Oval Definition:oval:org.opensuse.security:def:20157758
Revision Date:2022-06-30Version:1
Title:CVE-2015-7758
Description:

Gummi 0.6.5 allows local users to write to arbitrary files via a symlink attack on a temporary dot file that uses the name of an existing file and a (1) .aux, (2) .log, (3) .out, (4) .pdf, or (5) .toc extension for the file name, as demonstrated by .thesis.tex.aux.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-7758
Mitre CVE-2015-7758
SUSE CVE-2015-7758
openSUSE-SU-2015:2369-1
openSUSE-SU-2016:0574-1
Platform(s):openSUSE 13.1
openSUSE 13.2
openSUSE Leap 42.1
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND gummi-0.6.5-2.4.1 is installed
    • Definition Synopsis
  • openSUSE 13.2 is installed
  • AND gummi-0.6.5-5.6.1 is installed
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • gummi-0.7.1-8.1 is installed
  • AND gummi is signed with openSUSE key
  • OR
  • gummi-lang-0.7.1-8.1 is installed
  • AND gummi-lang is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • gummi-0.7.4.3-2.6 is installed
  • OR gummi-lang-0.7.4.3-2.6 is installed
    • BACK