The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-cacher-ng versions prior to 3.1-lp151.3.3.1.
History

Tue, 17 Sep 2024 01:30:00 +0000

Type Values Removed Values Added
Title apt-cacher-ng insecure use of /run/apt-cacher-ng apt-cacher-ng insecure use of /run/apt-cacher-ng

cve-icon MITRE

Status: PUBLISHED

Assigner: suse

Published: 2020-01-23T15:00:20.234353Z

Updated: 2024-09-17T01:25:34.093Z

Reserved: 2019-11-12T00:00:00

Link: CVE-2019-18899

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-23T15:15:13.600

Modified: 2024-11-21T04:33:48.320

Link: CVE-2019-18899

cve-icon Redhat

No data.