CVE-2012-4453

Published: Oct 9, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other products, creates initramfs images with world-readable permissions, which might allow local users to obtain sensitive information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2013:1674

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=859448

x_refsource_CONFIRM

55713

vdb-entry

x_refsource_BID

[oss-security] 20120927 Re: dracut creates non-world readable initramfs images

mailing-list

x_refsource_MLIST

dracut-initramfs-information-disclosure(79258)

vdb-entry

x_refsource_XF

http://git.kernel.org/?p=boot/dracut/dracut.git%3Ba=commit%3Bh=e1b48995c26c4f06d1a71

x_refsource_MISC

[oss-security] 20120927 Re: dracut creates world readable initramfs images

mailing-list

x_refsource_MLIST

[oss-security] 20120927 dracut creates non-world readable initramfs images

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-4453

Description

Affected Products

References