CVE-2012-0871 (GCVE-0-2012-0871)

Vulnerability from cvelistv5 – Published: 2014-04-18 14:00 – Updated: 2024-08-06 18:38
VLAI?
Summary
The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Date Public ?
2012-02-29 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T18:38:14.999Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SA:2012:001",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=795853"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.novell.com/show_bug.cgi?id=747154"
          },
          {
            "name": "79768",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/79768"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-02-29T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2014-04-18T12:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "SUSE-SA:2012:001",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=795853"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.novell.com/show_bug.cgi?id=747154"
        },
        {
          "name": "79768",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/79768"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2012-0871",
    "datePublished": "2014-04-18T14:00:00.000Z",
    "dateReserved": "2012-01-19T00:00:00.000Z",
    "dateUpdated": "2024-08-06T18:38:14.999Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"037\", \"matchCriteriaId\": \"D0F8B5B7-699C-4FEB-BD06-096D221839A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F94D3F3F-896A-462A-A08E-9E96758C7044\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC8D95CE-2009-4554-9940-00D9C3558323\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D69D4F3E-C996-4613-933D-CCD60E275F41\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD1E624C-A4BA-48F9-833B-268BCF4CF9C0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C465DE7-15B8-41A1-82A1-FCFC7BC3BAFF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40BB0049-1585-419A-96B6-18AE7DFB2481\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"62854970-1CB8-490C-93D9-73BBA790E972\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0306A23C-8A10-4486-B903-7A45B57C7449\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4FE1A3BA-B695-436F-906A-4BC3AF73F1CE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA57D859-BC9C-4D6B-A6DA-72EC50C6B8B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E28AE943-31FE-44E2-B605-E2F0CA0864F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DE37C52-32FD-4847-A2CB-5B886945D99A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3FAFD13-1E57-4F25-BD74-A0848C9C8C6B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE28D3B0-5386-4C19-9EE5-D0900CF17F8B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"831DE806-EBAA-4B9A-8A6C-DA97562ECEA6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F93B2D0-5D73-4F91-BEA5-9B78FC9275AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F84734C1-2F2B-4DAA-97F1-A4FD8351912E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9896DD5A-165F-42F6-B3E1-170972E95870\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66F321BA-39FF-4ECE-A834-E703F1E506B7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1586F77-1E4A-449C-9B5A-ACC53A0EFB53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3890D45B-3EF1-4640-9178-0BE44AF6A351\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B8DA70D-3A30-4284-BDE5-173034217292\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"421D9E8B-78EC-40A1-B9FF-A97A02C62516\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"73F57756-778D-4EB0-B0E5-B8B5D92705F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:25:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64D83463-13ED-430C-8C40-2237DF0E3643\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:26:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79AF61C4-416D-451A-AACC-16F58341583F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC4E6FD6-1682-45D8-ABE1-AF3246ED19F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F122D3A-BA34-47C7-88D6-E6D95336B9C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19083D70-7A2E-4064-9145-1B446732BEC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"187847B5-8B9C-43F2-A473-53618ADE5B46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:31:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"08D20503-7386-4883-9BE6-6393783E5E61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:32:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"023D79B4-A812-453E-B255-92787C3D2F24\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BE7541DE-707D-4D9A-943E-F664B4A8E269\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADB3E996-91FD-43F5-BE5D-860F4BE3E79B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"57EC044B-6556-4CE2-B3DB-C03D9D9983CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:systemd_project:systemd:36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D59DCAD7-7C82-41A2-89BA-4F05BEC08106\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n session_link_x11_socket en login/logind-session.c en systemd-logind en systemd, posiblemente 37 y anteriores, permite a usuarios locales crear o sobrescribir archivos arbitrarios a trav\\u00e9s de un ataque symlink sobre el directorio de usuario X11 en /run/user/.\"}]",
      "id": "CVE-2012-0871",
      "lastModified": "2024-11-21T01:35:52.960",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:N/I:C/A:C\", \"baseScore\": 6.3, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 9.2, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2014-04-18T14:55:25.227",
      "references": "[{\"url\": \"http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.osvdb.org/79768\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.novell.com/show_bug.cgi?id=747154\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=795853\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.osvdb.org/79768\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.novell.com/show_bug.cgi?id=747154\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=795853\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-59\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-0871\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2014-04-18T14:55:25.227\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n session_link_x11_socket en login/logind-session.c en systemd-logind en systemd, posiblemente 37 y anteriores, permite a usuarios locales crear o sobrescribir archivos arbitrarios a trav\u00e9s de un ataque symlink sobre el directorio de usuario X11 en /run/user/.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:N/I:C/A:C\",\"baseScore\":6.3,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":9.2,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"037\",\"matchCriteriaId\":\"D0F8B5B7-699C-4FEB-BD06-096D221839A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F94D3F3F-896A-462A-A08E-9E96758C7044\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC8D95CE-2009-4554-9940-00D9C3558323\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D69D4F3E-C996-4613-933D-CCD60E275F41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD1E624C-A4BA-48F9-833B-268BCF4CF9C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C465DE7-15B8-41A1-82A1-FCFC7BC3BAFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40BB0049-1585-419A-96B6-18AE7DFB2481\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62854970-1CB8-490C-93D9-73BBA790E972\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0306A23C-8A10-4486-B903-7A45B57C7449\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FE1A3BA-B695-436F-906A-4BC3AF73F1CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA57D859-BC9C-4D6B-A6DA-72EC50C6B8B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E28AE943-31FE-44E2-B605-E2F0CA0864F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DE37C52-32FD-4847-A2CB-5B886945D99A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3FAFD13-1E57-4F25-BD74-A0848C9C8C6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE28D3B0-5386-4C19-9EE5-D0900CF17F8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"831DE806-EBAA-4B9A-8A6C-DA97562ECEA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F93B2D0-5D73-4F91-BEA5-9B78FC9275AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F84734C1-2F2B-4DAA-97F1-A4FD8351912E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9896DD5A-165F-42F6-B3E1-170972E95870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F321BA-39FF-4ECE-A834-E703F1E506B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1586F77-1E4A-449C-9B5A-ACC53A0EFB53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3890D45B-3EF1-4640-9178-0BE44AF6A351\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B8DA70D-3A30-4284-BDE5-173034217292\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"421D9E8B-78EC-40A1-B9FF-A97A02C62516\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73F57756-778D-4EB0-B0E5-B8B5D92705F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64D83463-13ED-430C-8C40-2237DF0E3643\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79AF61C4-416D-451A-AACC-16F58341583F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC4E6FD6-1682-45D8-ABE1-AF3246ED19F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F122D3A-BA34-47C7-88D6-E6D95336B9C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19083D70-7A2E-4064-9145-1B446732BEC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"187847B5-8B9C-43F2-A473-53618ADE5B46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08D20503-7386-4883-9BE6-6393783E5E61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"023D79B4-A812-453E-B255-92787C3D2F24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE7541DE-707D-4D9A-943E-F664B4A8E269\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADB3E996-91FD-43F5-BE5D-860F4BE3E79B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57EC044B-6556-4CE2-B3DB-C03D9D9983CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:systemd_project:systemd:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D59DCAD7-7C82-41A2-89BA-4F05BEC08106\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBB2C482-D2A4-48B3-ACE7-E1DFDCC409B5\"}]}]}],\"references\":[{\"url\":\"http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.osvdb.org/79768\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.novell.com/show_bug.cgi?id=747154\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=795853\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://cgit.freedesktop.org/systemd/systemd/commit/?id=fc3c1c6e091ea16ad5600b145201ec535bbb5d7c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00030.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/79768\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.novell.com/show_bug.cgi?id=747154\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=795853\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.