CVE-2020-7040
storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. (Local users can also create a plain file named /tmp/storeBackup.lock to block use of storeBackup until an admin manually deletes that file.)
Link Following
Vendor | Product | Version |
---|---|---|
storebackup | storebackup | 𝑥 ≤ 3.5 |
debian | debian_linux | 8.0 |
opensuse | backports_sle | 15.0 |
opensuse | backports_sle | 15.0 |
opensuse | leap | 15.1 |
canonical | ubuntu_linux | 16.04 |
canonical | ubuntu_linux | 18.04 |
canonical | ubuntu_linux | 20.04 |
Ubuntu Releases
Common Weakness Enumeration