RSS   Vulnerabilities for 'Cronie'   RSS

2013-04-09
 
CVE-2012-6097

 

 
File descriptor leak in cronie 1.4.8, when running in certain environments, might allow local users to read restricted files, as demonstrated by reading /etc/crontab.

 
2010-02-25
 
CVE-2010-0424

CWE-59
 

 
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory.

 

 >>> Vendor: Fedorahosted 3 Products
SSSD
NEWT
Cronie


Copyright 2024, cxsecurity.com

 

Back to Top