daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.
Software | From | Fixed in |
---|---|---|
redhat / enterprise_linux_desktop | 7.0 | 7.0.x |
redhat / enterprise_linux_server | 7.0 | 7.0.x |
redhat / enterprise_linux_workstation | 7.0 | 7.0.x |
redhat / enterprise_linux_server_aus | 7.3 | 7.3.x |
redhat / enterprise_linux_server_aus | 7.4 | 7.4.x |
redhat / enterprise_linux_server_aus | 7.6 | 7.6.x |
redhat / enterprise_linux_server_aus | 7.7 | 7.7.x |
redhat / enterprise_linux_server_eus | 7.1 | 7.1.x |
redhat / enterprise_linux_server_eus | 7.2 | 7.2.x |
redhat / enterprise_linux_server_eus | 7.3 | 7.3.x |
redhat / enterprise_linux_server_eus | 7.4 | 7.4.x |
redhat / enterprise_linux_server_eus | 7.5 | 7.5.x |
redhat / enterprise_linux_server_eus | 7.6 | 7.6.x |
redhat / enterprise_linux_server_eus | 7.7 | 7.7.x |
redhat / enterprise_linux_server_tus | 7.3 | 7.3.x |
redhat / enterprise_linux_server_tus | 7.6 | 7.6.x |
redhat / enterprise_linux_server_tus | 7.7 | 7.7.x |