Showing 1 - 5 of 5

CVE-2020-1736

Status Candidate

Overview

A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restrictive permissions before the move. This could lead to the disclosure of sensitive data. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.

Related Files

Gentoo Linux Security Advisory 202101-02: Posted Jan 11, 2021; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202101-2 - Multiple vulnerabilities have been found in Firejail, the worst of which could result in the arbitrary execution of code. Versions less than 0.9.64 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2020-17367, CVE-2020-17368; SHA-256 | d65c1a5ca56b2de2779dabcfa0e880e81586cfa032e2e3a6ff9a591474a30b5b; Download | Favorite | View

Avian JVM 1.2.0 Silent Return: Posted Aug 12, 2020; Authored by Pietro Oliva; Avian JVM version 1.2.0 suffers from a silent return issue in the vm::arrayCopy method defined in classpath-common.h, where multiple boundary checks are performed to prevent out-of-bounds memory read/write. One of these boundary checks makes the code return silently when a negative length is provided instead of throwing an exception.; tags | exploit; advisories | CVE-2020-17361; SHA-256 | 53ead956cdf9e9e2c075fcdfff1ae5c760e139f9927afb026cac0d5b93cd5921; Download | Favorite | View

Avian JVM 1.2.0 Integer Overflow: Posted Aug 12, 2020; Authored by Pietro Oliva; Avian JVM version 1.2.0 suffers from multiple vm::arrayCopy() integer overflow vulnerabilities.; tags | exploit, overflow, vulnerability; advisories | CVE-2020-17360; SHA-256 | f95c4205b8ecd4cf340fed2f7ac5947cbf815565adc1c0184abd2d90668c51dc; Download | Favorite | View

Debian Security Advisory 4742-1: Posted Aug 6, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4742-1 - Tim Starling discovered two vulnerabilities in firejail, a sandbox program to restrict the running environment of untrusted applications.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2020-17367, CVE-2020-17368; SHA-256 | 6a4df3c7ad1367dcd699c32aacb749682658d724271d0b74dde2c46776b6fd35; Download | Favorite | View

Gentoo Linux Security Advisory 202006-11: Posted Jun 12, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202006-11 - Multiple vulnerabilities have been found in Ansible, the worst of which could result in the arbitrary execution of code. Versions less than 2.9.7 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2020-10684, CVE-2020-10685, CVE-2020-1733, CVE-2020-1735, CVE-2020-1736, CVE-2020-1737, CVE-2020-1738, CVE-2020-1740, CVE-2020-1753; SHA-256 | 07bf091f4874a3a39e3e16f85a6bae74fe9910afa08923b0f0c10cdb896fd1cf; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 290 files
Ubuntu 63 files
Debian 20 files
Gentoo 8 files
Apple 6 files
LiquidWorm 4 files
Google Security Research 4 files
Alter Prime 3 files
Spencer McIntyre 3 files
Jann Horn 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2020-1736

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems