ALT Linux Team

Package borg update in sisyphus on 2024-04-04

ALT-PU-2017-3587-1

Package borg updated to version 1.1.3-alt1 for branch sisyphus in task 195957.

Closed vulnerabilities

Published: 2018-02-08
Modified: 2024-11-21

CVE-2017-15914

Incorrect implementation of access controls allows remote users to override repository restrictions in Borg servers 1.1.x before 1.1.3.

Severity: MEDIUM (6.5) Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Severity: HIGH (8.8) Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.2
Back to top