← Back

CVE-2019-12447

nvd nist
Published: May 29, 2019Modified: Nov 21, 2024

JSON object

Loading...
7.3
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Exploitability: 2.1 / Impact: 5.2
Source: NVD

Description

An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid is not used.

Affected (9)

Products: Gnome: Gvfs · Canonical: Ubuntu Linux · Fedoraproject: Fedora · +1 more
Show all products
Gnome: Gvfs · Canonical: Ubuntu Linux · Fedoraproject: Fedora · Opensuse: Leap
Gnome
1 product
Gvfs
Canonical
1 product
Ubuntu Linux
Fedoraproject
1 product
Fedora
Opensuse
1 product
Leap
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Gvfs
From 1.29.4 to 1.41.2
Configuration B
8 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 16.04
Ubuntu Linux
Version 18.04
Ubuntu Linux
Version 18.10
Ubuntu Linux
Version 19.04
Fedoraproject
Fedora
Version 29
Fedora
Version 30
Opensuse
Leap
Version 15.0
Leap
Version 15.1

References (14)

Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.