Vulnerabilities > Redhat > Automatic BUG Reporting Tool
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-03-12 | CVE-2012-5659 | Unspecified vulnerability in Redhat Automatic BUG Reporting Tool Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to load and execute arbitrary Python modules by modifying the PYTHONPATH environment variable to reference a malicious Python module. | 3.7 |
2012-07-03 | CVE-2012-1106 | Permissions, Privileges, and Access Controls vulnerability in Redhat Automatic BUG Reporting Tool The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.suid_dumpable option is set to 2, which allows local users to obtain sensitive information. | 1.9 |