4.4

CVE-2020-13696

An issue was discovered in LinuxTV xawtv before 3.107. The function dev_open() in v4l-conf.c does not perform sufficient checks to prevent an unprivileged caller of the program from opening unintended filesystem paths. This allows a local attacker with access to the v4l-conf setuid-root program to test for the existence of arbitrary files and to trigger an open on arbitrary files with mode O_RDWR. To achieve this, relative path components need to be added to the device path, as demonstrated by a v4l-conf -c /dev/../root/.bash_history command.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxtvXawtv Version < 3.107
DebianDebian Linux Version8.0
OpensuseBackports Sle Version15.0 Updatesp1
OpensuseLeap Version15.1
FedoraprojectFedora Version31
FedoraprojectFedora Version32
CanonicalUbuntu Linux Version16.04 SwEditionesm
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.05% 0.139
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.4 1.8 2.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
nvd@nist.gov 3.6 3.9 4.9
AV:L/AC:L/Au:N/C:P/I:P/A:N
CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

http://www.openwall.com/lists/oss-security/2020/06/04/6
Third Party Advisory
Mailing List
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2020-13696
Third Party Advisory
Broken Link
Issue Tracking
https://usn.ubuntu.com/4518-1/
Third Party Advisory