← back
CVE-2015-3150

CVE-2015-3150

EPSS 0.4%
abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.
Affected products
ABRT · ABRT

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1214457https://github.com/abrt/abrt/commit/6e811d78e2719988ae291181f5b133af32ce62d8https://github.com/abrt/abrt/commit/7814554e0827ece778ca88fd90832bd4d05520b1https://github.com/abrt/abrt/commit/b7f8bd20b7fb5b72f003ae3fa647c1d75f4218b7https://github.com/abrt/libreport/commit/1951e7282043dfe1268d492aea056b554baedb75