CVE-2013-6412

描述

The transform_save function in transform.c in Augeas 1.0.0 through 1.1.0 does not properly calculate the permission values when the umask contains a "7," which causes world-writable permissions to be used for new files and allows local users to modify the files via unspecified vectors.

受影響套件(1)

• Debian/augeasfrom 0, < 1.2.0-0.1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-6412