Vulnerability CVE-2012-3500

Vulnerability Name:

CVE-2012-3500 (CCN-78230)

Assigned:

2012-08-31

Published:

2012-08-31

Updated:

2023-02-13

Summary:

CVSS v3 Severity:

5.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

1.2 Low (CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:N)
1.0 Low (Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

3.3 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.9 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

Vulnerability Consequences:

File Manipulation

References:

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: MITRE
Type: CNA
CVE-2012-3500

Source: CCN
Type: Fedora Project Web site
rpmdevtools

Source: secalert@redhat.com
Type: Patch
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: SA50600
Debian update for devscripts

Source: CCN
Type: Debian Web Site
Debian -- The Universal Operating System

Source: secalert@redhat.com
Type: Vendor Advisory
secalert@redhat.com

Source: DEBIAN
Type: DSA-2549
devscripts -- multiple vulnerabilities

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: BID-55358
Multiple Products CVE-2012-3500 Temporary File Handling Security Vulnerability

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: CCN
Type: Red Hat Bugzilla Bug 848022
CVE-2012-3500 rpmdevtools: TOCTOU race condition in annotate-output

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Source: XF
Type: UNKNOWN
rpmdevtools-toctou-symlink(78230)

Source: secalert@redhat.com
Type: UNKNOWN
secalert@redhat.com

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20123500	V	CVE-2012-3500	2022-09-02
oval:org.opensuse.security:def:1383	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP3) (Important)	2022-06-06
oval:org.opensuse.security:def:1804	P	Security update for MozillaThunderbird (Important)	2022-05-17
oval:org.opensuse.security:def:1336	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP3) (Important)	2022-05-09
oval:org.opensuse.security:def:884	P	Security update for rsyslog (Important)	2022-05-09
oval:org.opensuse.security:def:1758	P	Security update for the Linux Kernel (Critical)	2022-02-11
oval:org.opensuse.security:def:112062	P	checkbashisms-2.15.1-1.8 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:113344	P	rpmdevtools-8.10-7.5 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:9137	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:9888	P	Security update for libvirt (Important)	2022-01-11
oval:org.opensuse.security:def:838	P	Security update for openssh (Important)	2021-12-22
oval:org.opensuse.security:def:9439	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:10192	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:1290	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:106751	P	Security update for clamav (Moderate)	2021-12-06
oval:org.opensuse.security:def:9069	P	Security update for mariadb (Moderate)	2021-12-06
oval:org.opensuse.security:def:9431	P	Security update for clamav (Moderate)	2021-12-06
oval:org.opensuse.security:def:64628	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:9061	P	Security update for netcdf (Important)	2021-11-30
oval:org.opensuse.security:def:10364	P	Security update for java-11-openjdk (Important)	2021-11-16
oval:org.opensuse.security:def:9813	P	Security update for java-11-openjdk (Important)	2021-11-16
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:10345	P	Security update for grilo (Important)	2021-10-06
oval:org.opensuse.security:def:9794	P	Security update for grilo (Important)	2021-10-06
oval:org.opensuse.security:def:105611	P	checkbashisms-2.15.1-1.8 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:71215	P	kdump-0.9.0-2.3 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71328	P	libvirt-libs-5.1.0-6.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:9588	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:9390	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:10144	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:9779	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:10330	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:9569	P	Security update for nodejs8 (Important)	2021-08-20
oval:org.opensuse.security:def:9382	P	Security update for libass (Important)	2021-08-20
oval:org.opensuse.security:def:47360	P	libjasper1-1.900.14-194.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47820	P	libzip2-0.11.1-13.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48358	P	zypper-1.13.51-21.26.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47734	P	libldap-2_4-2-2.4.41-18.40.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48320	P	sysvinit-tools-2.88+-101.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47374	P	libmicrohttpd10-0.9.30-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47912	P	update-alternatives-1.18.4-14.216 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47406	P	libsmi-0.4.8-18.55 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47866	P	python-imaging-1.1.7-21.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47359	P	libjansson4-2.7-1.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47495	P	rsyslog-8.24.0-1.20 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48060	P	krb5-appl-clients-1.0.3-1.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47420	P	libtiff5-32bit-4.0.7-43.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47958	P	autofs-5.1.3-1.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47405	P	libruby2_1-2_1-2.1.9-18.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47688	P	libXvnc1-1.6.0-18.23.72 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48274	P	powerpc-utils-1.3.7-5.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47541	P	yast2-users-3.2.11-1.47 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48106	P	libecpg6-10.10-1.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:100833	P	freetype2-devel-2.10.1-4.8.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:9371	P	Security update for mariadb (Important)	2021-08-05
oval:org.opensuse.security:def:9369	P	Security update for linuxptp (Important)	2021-07-27
oval:org.opensuse.security:def:9554	P	Security update for nodejs10 (Important)	2021-07-15
oval:org.opensuse.security:def:9752	P	Security update for sqlite3 (Important)	2021-07-14
oval:org.opensuse.security:def:9360	P	Security update for dbus-1 (Important)	2021-06-30
oval:org.opensuse.security:def:64541	P	Security update for qemu (Moderate)	2021-06-30
oval:org.opensuse.security:def:9356	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:9541	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:9739	P	Security update for cryptctl (Important)	2021-06-23
oval:org.opensuse.security:def:9532	P	Security update for java-1_8_0-openjdk (Moderate)	2021-06-17
oval:org.opensuse.security:def:10283	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:9732	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:9730	P	Security update for squid (Important)	2021-06-11
oval:org.opensuse.security:def:48587	P	p7zip-9.20.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48516	P	libldap-2_4-2-2.4.41-18.25.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48531	P	libotr5-4.0.0-9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:72566	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15924	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124412	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48404	P	dosfstools-3.0.26-6.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48633	P	sysvinit-tools-2.88+-96.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48562	P	libupsclient1-2.7.1-4.55 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16150	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48420	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15554	P	checkbashisms-2.12.6-3.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16406	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48485	P	libcgroup-tools-0.41.rc1-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48466	P	libXfixes3-5.0.1-3.52 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15726	P	checkbashisms-2.12.6-3.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62847	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:66800	P	Security update for python-py (Moderate)	2021-06-01
oval:org.opensuse.security:def:9318	P	Security update for sca-patterns-sle11 (Important)	2021-05-04
oval:org.opensuse.security:def:10069	P	Security update for cifs-utils (Important)	2021-04-30
oval:org.opensuse.security:def:67975	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) (Important)	2021-04-28
oval:org.opensuse.security:def:9309	P	Security update for sudo (Important)	2021-04-20
oval:org.opensuse.security:def:9490	P	Security update for clamav (Important)	2021-04-14
oval:org.opensuse.security:def:9688	P	Security update for xorg-x11-server (Important)	2021-04-14
oval:org.opensuse.security:def:10237	P	Security update for spamassassin (Important)	2021-04-13
oval:org.opensuse.security:def:9686	P	Security update for spamassassin (Important)	2021-04-13
oval:org.opensuse.security:def:10233	P	Security update for tomcat (Important)	2021-04-01
oval:org.opensuse.security:def:11188	P	Security update for connman (Moderate)	2021-03-20
oval:org.opensuse.security:def:9465	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9664	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:10220	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:9663	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:10412	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9461	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9656	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:10214	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:10211	P	Security update for java-1_8_0-ibm (Important)	2021-03-01
oval:org.opensuse.security:def:10207	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:9091	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:10390	P	Security update for wpa_supplicant (Important)	2021-02-11
oval:org.opensuse.security:def:9507	P	Security update for tcmu-runner (Important)	2021-01-18
oval:org.opensuse.security:def:10637	P	Security update for MozillaThunderbird (Important)	2021-01-14
oval:org.opensuse.security:def:11166	P	Security update for privoxy (Moderate)	2021-01-05
oval:org.opensuse.security:def:10035	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:66708	P	Security update for PackageKit (Low)	2020-12-22
oval:org.opensuse.security:def:16702	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103627	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:94120	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62893	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107499	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72612	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62941	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3866	P	checkbashisms-2.12.6-3.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72660	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:89972	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1852	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117057	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:9955	P	p7zip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49723	P	FastCGI on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10615	P	DirectFB-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9293	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9263	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67875	P	gnome-online-accounts-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9913	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10020	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9988	P	ruby on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9977	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49777	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9964	P	perl-HTML-Parser on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10042	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49770	P	apache-pdfbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10871	P	ImageMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9912	P	libqt4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9184	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10893	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70051	P	gdm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9233	P	python-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49824	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10506	P	libidn-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9199	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70156	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9920	P	libsqlite3-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10050	P	dhcp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49677	P	libmicrohttpd-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10464	P	libQt5WebKit-private-headers-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10528	P	libpcp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10515	P	liblcms-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9218	P	perl-DBD-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9241	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73373	P	cups-pk-helper on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49731	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9942	P	logrotate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73491	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:18171	P	USN-1593-1 -- devscripts vulnerabilities	2014-06-30
oval:org.mitre.oval:def:20054	P	DSA-2549-1 devscripts - multiple	2014-06-23
oval:com.ubuntu.precise:def:20123500000	V	CVE-2012-3500 on Ubuntu 12.04 LTS (precise) - low.	2012-09-30

BACK