CVE-2007-6249

NONECVSS 0.0

0.0

etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original files, which might allow local users to obtain sensitive information by reading the merge file.

🔗 References (16)

cve@mitrehttp://bugs.gentoo.org/show_bug.cgi?id=193589
cve@mitrehttp://osvdb.org/42636
cve@mitrehttp://secunia.com/advisories/28094
cve@mitrehttp://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev
cve@mitrehttp://www.gentoo.org/security/en/glsa/glsa-200712-11.xml
cve@mitrehttp://www.securityfocus.com/bid/26864
cve@mitrehttp://www.securitytracker.com/id?1019097
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39035
af854a3a-2127-422b-91ae-364da2661108http://bugs.gentoo.org/show_bug.cgi?id=193589
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42636
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28094
af854a3a-2127-422b-91ae-364da2661108http://sources.gentoo.org/viewcvs.py/portage?rev=7799&view=rev
af854a3a-2127-422b-91ae-364da2661108http://www.gentoo.org/security/en/glsa/glsa-200712-11.xml
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/26864
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1019097

Is Your Infrastructure Affected by CVE-2007-6249?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-6249

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-6249?