CVE-2015-1323

The simulate dbus method in aptdaemon before 1.1.1+bzr982-0ubuntu3.1 as packaged in Ubuntu 15.04, before 1.1.1+bzr980-0ubuntu1.1 as packaged in Ubuntu 14.10, before 1.1.1-1ubuntu5.2 as packaged in Ubuntu 14.04 LTS, before 0.43+bzr805-0ubuntu10 as packaged in Ubuntu 12.04 LTS allows local users to obtain sensitive information, or access files with root permissions.
References
Link Resource
http://www.securityfocus.com/bid/75221 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-2648-1 Mitigation Patch Vendor Advisory
http://www.securityfocus.com/bid/75221 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-2648-1 Mitigation Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

History

21 Nov 2024, 02:25

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/75221 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/75221 - Third Party Advisory, VDB Entry
References () http://www.ubuntu.com/usn/USN-2648-1 - Mitigation, Patch, Vendor Advisory () http://www.ubuntu.com/usn/USN-2648-1 - Mitigation, Patch, Vendor Advisory

Information

Published : 2017-07-21 14:29

Updated : 2024-11-21 02:25


NVD link : CVE-2015-1323

Mitre link : CVE-2015-1323

CVE.ORG link : CVE-2015-1323


JSON object : View

Products Affected

canonical

  • ubuntu_linux
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor