CVE-2015-5224

Published: Aug 23, 2017

Modified: Dec 4, 2025

PUBLISHED

Description

The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to cause file name collision and possibly other attacks.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=1256686

x_refsource_CONFIRM

76467

vdb-entry

x_refsource_BID

[oss-security] 20150824 CVE-2015-5224 login-utils: file name collision due to incorrect mkstemp use

mailing-list

x_refsource_MLIST

https://github.com/karelzak/util-linux/commit/bde91c85bdc77975155058276f99d2e0f5eab5a9

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-5224

Description

Affected Products

References