ALT-PU-2015-2842-1
Closed vulnerabilities
Published: 2017-09-07
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-5186
Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.
Severity: MEDIUM (5.3)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
References:
- [oss-security] 20150813 Audit: log terminal emulator escape sequences handling CVE-2015-5186
- [oss-security] 20150813 Audit: log terminal emulator escape sequences handling CVE-2015-5186
- 76840
- 76840
- https://bugzilla.redhat.com/show_bug.cgi?id=1251621
- https://bugzilla.redhat.com/show_bug.cgi?id=1251621
- https://people.redhat.com/sgrubb/audit/ChangeLog
- https://people.redhat.com/sgrubb/audit/ChangeLog