CVE-2011-0995

NameCVE-2011-0995
DescriptionThe sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ruby-sqlite3 (PTS)bullseye1.4.2-3fixed
bookworm1.4.2-4fixed
trixie1.7.3-1fixed
forky, sid1.7.3-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ruby-sqlite3source(unstable)(not affected)

Notes

- ruby-sqlite3 <not-affected> (SuSE-specific packaging flaw)
Search for package or bug name: Reporting problems