Back to search
CVE-2015-3159
Published: Jan 14, 2020
Modified: Aug 6, 2024
PUBLISHED
Description
The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) does not properly handle the process environment before invoking abrt-action-install-debuginfo, which allows local users to gain privileges.
| Vendor | Product | Versions |
|---|---|---|
ABRT | ABRT | affected before 9a4100678fea4d60ec93d35f4c5de2e9ad054f3a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1216962
x_refsource_CONFIRM
https://github.com/abrt/abrt/commit/9943a77bca37a0829ccd3784d1dfab37f8c24e7b
x_refsource_CONFIRM
https://github.com/abrt/abrt/commit/9a4100678fea4d60ec93d35f4c5de2e9ad054f3a
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now