Home

CVE-2015-5302

Description

libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds, (5) maps, (6) smaps, (7) hostname, (8) remote, (9) ks.cfg, or (10) anaconda-tb file attachment included in a Red Hat Bugzilla bug report.

Risk Information

Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
0.611

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2015:2504) Moderate: libreport security update libreport-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-cli-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-cli-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-compat-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-compat-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-devel-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-devel-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-filesystem-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-filesystem-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-gtk-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-gtk-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-gtk-devel-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-gtk-devel-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-newt-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-newt-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-bugzilla-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-bugzilla-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-kerneloops-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-kerneloops-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-logger-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-logger-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-mailx-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-mailx-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-reportuploader-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-reportuploader-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-rhtsupport-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-rhtsupport-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-ureport-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-plugin-ureport-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-python-2.0.9-25.el6_7.i686.rpmLinux
(RHSA-2015:2504) Moderate: libreport security update libreport-python-2.0.9-25.el6_7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-ccpp-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-kerneloops-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-pstoreoops-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-python-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-upload-watch-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-vmcore-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-addon-xorg-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-cli-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-console-notification-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-dbus-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-desktop-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-devel-2.1.11-35.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-devel-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-gui-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-gui-devel-2.1.11-35.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-gui-devel-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-gui-libs-2.1.11-35.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-gui-libs-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-libs-2.1.11-35.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-libs-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-python-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-retrace-client-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update abrt-tui-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-anaconda-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-cli-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-compat-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-devel-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-devel-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-filesystem-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-gtk-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-gtk-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-gtk-devel-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-gtk-devel-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-newt-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-bugzilla-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-kerneloops-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-logger-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-mailx-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-reportuploader-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-rhtsupport-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-plugin-ureport-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-python-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-rhel-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-rhel-anaconda-bugzilla-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-rhel-bugzilla-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-web-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-web-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-web-devel-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505) Moderate: abrt and libreport security update libreport-web-devel-2.1.11-31.el7.x86_64.rpmLinux
(RHSA-2015:2505)Moderate: and libreport security update abrt-debuginfo-2.1.11-35.el7.i686.rpmLinux
(RHSA-2015:2505)Moderate: and libreport security update abrt-debuginfo-2.1.11-35.el7.x86_64.rpmLinux
(RHSA-2015:2505)Moderate: and libreport security update abrt-python-doc-2.1.11-35.el7.noarch.rpmLinux
(RHSA-2015:2505)Moderate: and libreport security update libreport-debuginfo-2.1.11-31.el7.i686.rpmLinux
(RHSA-2015:2505)Moderate: and libreport security update libreport-debuginfo-2.1.11-31.el7.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234