CVE-2011-0402
- EPSS 2.87%
- Veröffentlicht 11.01.2011 03:00:05
- Zuletzt bearbeitet 16.06.2026 23:27:17
dpkg-source in dpkg before 1.14.31 and 1.15.x allows user-assisted remote attackers to modify arbitrary files via a symlink attack on unspecified files in the .pc directory.
CVE-2010-1679
- EPSS 3.12%
- Veröffentlicht 11.01.2011 03:00:01
- Zuletzt bearbeitet 16.06.2026 23:19:07
Directory traversal vulnerability in dpkg-source in dpkg before 1.14.31 and 1.15.x allows user-assisted remote attackers to modify arbitrary files via directory traversal sequences in a patch for a source-format 3.0 package.
CVE-2004-2768
- EPSS 0.41%
- Veröffentlicht 08.06.2010 18:30:07
- Zuletzt bearbeitet 16.06.2026 22:10:18
dpkg 1.9.21 does not properly reset the metadata of a file during replacement of the file in a package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid file, (2) setgid file, or (3) device, ...
CVE-2010-0396
- EPSS 2.01%
- Veröffentlicht 15.03.2010 13:28:25
- Zuletzt bearbeitet 16.06.2026 23:16:04
Directory traversal vulnerability in the dpkg-source component in dpkg before 1.14.29 allows remote attackers to modify arbitrary files via a crafted Debian source archive.