ALT-PU-2015-1460-1
Closed vulnerabilities
Published: 2015-06-02
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-4155
GNU Parallel before 20150422, when using (1) --pipe, (2) --tmux, (3) --cat, (4) --fifo, or (5) --compress, allows local users to write to arbitrary files via a symlink attack on a temporary file.
Severity: LOW (3.6)
References:
- [parallel] 20150423 GNU Parallel Security Advisory: GNU Parallel can be tricked into overwriting a file
- [parallel] 20150423 GNU Parallel Security Advisory: GNU Parallel can be tricked into overwriting a file
- [parallel] 20150522 GNU Parallel 20150522 ('Nepal') released [stable]
- [parallel] 20150522 GNU Parallel 20150522 ('Nepal') released [stable]
- 74962
- 74962
Published: 2015-06-02
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-4156
GNU Parallel before 20150522 (Nepal), when using (1) --cat or (2) --fifo with --sshlogin, allows local users to write to arbitrary files via a symlink attack on a temporary file.
Severity: LOW (3.6)
References:
- [parallel] 20150423 GNU Parallel Security Advisory: GNU Parallel can be tricked into overwriting a file
- [parallel] 20150423 GNU Parallel Security Advisory: GNU Parallel can be tricked into overwriting a file
- [parallel] 20150522 GNU Parallel 20150522 ('Nepal') released [stable]
- [parallel] 20150522 GNU Parallel 20150522 ('Nepal') released [stable]
- openSUSE-SU-2015:0968
- openSUSE-SU-2015:0968
- 74961
- 74961