Vulnerabilities (CVE)

Filtered by vendor Policyd-weight Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-1570 1 Policyd-weight 1 Policyd-weight 2024-11-21 6.9 MEDIUM N/A
Race condition in the create_lockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the symbolic link check occurs. NOTE: this is due to an incomplete fix for CVE-2008-1569.
CVE-2008-1569 2 Debian, Policyd-weight 2 Debian Linux, Policyd-weight 2024-11-21 3.3 LOW N/A
policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket.