CVE-2014-2524 — LOW (3.3) — White Hats Nepal

Q: What is CVE-2014-2524?

CVE-2014-2524 is a vulnerability with a CVSS score of 3.3 (LOW). The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.

Q: How severe is CVE-2014-2524?

CVE-2014-2524 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-2524?

Check the references section above for vendor advisories and patch information. Affected products include: Mageia Mageia, Gnu Readline, Opensuse Opensuse, Fedoraproject Fedora.

Vulnerability Description

The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.

CVSS Score

3.3

LOW

AV:L/AC:M/Au:N/C:N/I:P/A:P

Confidentiality

NONE

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Mageia	Mageia	3.0
Gnu	Readline	<= 6.3
Opensuse	Opensuse	12.3
Fedoraproject	Fedora	20

Related Weaknesses (CWE)

CWE-59

References

http://advisories.mageia.org/MGASA-2014-0319.htmlThird Party Advisory
http://lists.gnu.org/archive/html/bug-readline/2014-03/msg00057.htmlPatchVendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00037.htmlThird Party Advisory
http://seclists.org/oss-sec/2014/q1/579Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2014/q1/587Mailing ListThird Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2014:154Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2015:132Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=1077023Issue Tracking
https://lists.fedoraproject.org/pipermail/package-announce/2014-July/135686.htmlThird Party Advisory
http://advisories.mageia.org/MGASA-2014-0319.htmlThird Party Advisory
http://lists.gnu.org/archive/html/bug-readline/2014-03/msg00057.htmlPatchVendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00037.htmlThird Party Advisory
http://seclists.org/oss-sec/2014/q1/579Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2014/q1/587Mailing ListThird Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2014:154Broken Link

FAQ

What is CVE-2014-2524?

CVE-2014-2524 is a vulnerability with a CVSS score of 3.3 (LOW). The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.

How severe is CVE-2014-2524?

CVE-2014-2524 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-2524?

Check the references section above for vendor advisories and patch information. Affected products include: Mageia Mageia, Gnu Readline, Opensuse Opensuse, Fedoraproject Fedora.