The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-cacher-ng versions prior to 3.1-lp151.3.3.1.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Sep 2024 01:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | apt-cacher-ng insecure use of /run/apt-cacher-ng | apt-cacher-ng insecure use of /run/apt-cacher-ng |
MITRE
Status: PUBLISHED
Assigner: suse
Published: 2020-01-23T15:00:20.234353Z
Updated: 2024-09-17T01:25:34.093Z
Reserved: 2019-11-12T00:00:00
Link: CVE-2019-18899
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-23T15:15:13.600
Modified: 2024-11-21T04:33:48.320
Link: CVE-2019-18899
Redhat
No data.