CVE-2014-1420

On desktop, Ubuntu UI Toolkit's StateSaver would serialise data on tmp/ files which an attacker could use to expose potentially sensitive data. StateSaver would also open files without the O_EXCL flag. An attacker could exploit this to launch a symlink attack, though this is partially mitigated by symlink and hardlink restrictions in Ubuntu. Fixed in 1.1.1188+14.10.20140813.4-0ubuntu1.
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.8 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
canonicalCNA
3.8 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
VendorProductVersion
canonicalubuntu-ui-toolkit
𝑥
< 1.1.1188\+14.10.20140813.4-0ubuntu1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ubuntu-ui-toolkit
disco
dne
cosmic
dne
bionic
dne
artful
dne
zesty
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
yakkety
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
xenial
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
wily
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
vivid
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
utopic
Fixed 1.1.1188+14.10.20140813.4-0ubuntu1
released
trusty
dne
precise
dne
lucid
dne
Common Weakness Enumeration
References
http://bazaar.launchpad.net/~ubuntu-sdk-team/ubuntu-ui-toolkit/staging/revision/1182
https://launchpad.net/bugs/1348241
http://bazaar.launchpad.net/~ubuntu-sdk-team/ubuntu-ui-toolkit/staging/revision/1182
https://launchpad.net/bugs/1348241