Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 7 of 7 results


CVE-2022-1348

Medium priority
Fixed

A vulnerability was found in logrotate in how the state file is created. The state file is used to prevent parallel executions of multiple instances of logrotate by acquiring and releasing a file lock. When the state file does not...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate Fixed Not affected Not affected Not affected
Show less packages

CVE-2011-1550

Medium priority
Not affected

The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages

CVE-2011-1549

Medium priority
Not affected

The default configuration of logrotate on Gentoo Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages

CVE-2011-1548

Medium priority

Some fixes available 1 of 3

The default configuration of logrotate on Debian GNU/Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages

CVE-2011-1155

Medium priority

Some fixes available 4 of 6

The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service (rotation outage) via a (1) \n (newline) or (2) \ (backslash) character in a log filename,...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages

CVE-2011-1154

Medium priority

Some fixes available 3 of 4

The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that...

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages

CVE-2011-1098

Medium priority

Some fixes available 1 of 3

Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place.

1 affected packages

logrotate

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
logrotate
Show less packages