Published: 15/10/2014 Updated: 08/01/2020

CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9

VMScore: 320

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P

The changelog command in Apt prior to 1.0.9.2 allows local users to write to arbitrary files via a symlink attack on the changelog file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian apt 1.0.9
debian advanced package tool
debian apt 0.9.7.9
debian advanced package tool 1.0.8

Debian Bug report logs - #763780 apt-get: CVE-2014-7206: Insecure temporary changelog handling Package: apt; Maintainer for apt is APT Development Team <deity@listsdebianorg>; Source for apt is src:apt (PTS, buildd, popcon) Reported by: Guillem Jover <guillem@debianorg> Date: Thu, 2 Oct 2014 16:33:07 UTC Severit ...

APT could be made to overwrite files ...

Guillem Jover discovered that the changelog retrieval functionality in apt-get used temporary files in an insecure way, allowing a local user to cause arbitrary files to be overwritten This vulnerability is neutralized by the fsprotected_symlinks setting in the Linux kernel, which is enabled by default in Debian 7 Wheezy and up For the stable di ...

CWE-59 http://www.debian.org/security/2014/dsa-3048 http://www.securityfocus.com/bid/70310 http://secunia.com/advisories/61768 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=763780 http://secunia.com/advisories/61158 http://secunia.com/advisories/61333 http://www.ubuntu.com/usn/USN-2370-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/96951 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=763780 https://usn.ubuntu.com/2370-1/https://nvd.nist.gov

CVE-2014-7206

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect