CVE-2010-0746

NameCVE-2010-0746
DescriptionDirectory traversal vulnerability in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operating systems, allows local users to gain privileges via .. (dot dot) sequences in the label for a pluggable storage device.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
udiskssource(unstable)1.0.0~git20100212.aae17d9-1

Notes

https://bugzilla.redhat.com/show_bug.cgi?id=523178
http://cgit.freedesktop.org/DeviceKit/DeviceKit-disks/commit/?id=62f883c7d38e75d0669c162529062a1e81d00da2
http://bugs.freedesktop.org/show_bug.cgi?id=23235

Search for package or bug name: Reporting problems