CVE-2013-4392

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2013-4392
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-4392.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2013-4392
Published
2013-10-28T22:55:03Z
Modified
2024-06-30T12:47:39.771305Z
Summary
[none]
Details

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

References

Affected packages

Debian:11 / systemd

Package

Name
systemd
Purl
pkg:deb/debian/systemd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

247.*

247.3-6
247.3-7
247.3-7+deb11u1
247.3-7+deb11u2
247.3-7+deb11u3
247.3-7+deb11u4
247.9-1
247.9-2
247.9-3
247.9-4

Other

248-1
249~rc1-1
249~rc2-1
249~rc3-1
249-1
250~rc3-1
250-1
250-2
251~rc1-1
251~rc1-2
251~rc1-3
251~rc2-1
251~rc2-2
251~rc3-1
251~rc3-2
251-1
251-2
252~rc2-1
252~rc3-1
252~rc3-2
252-1
252-2
252-3
253~rc2-1
253~rc3-1
253-1
253-2
253-3
253-4
254~rc1-1
254~rc1-2
254~rc1-3
254~rc1-4
254~rc2-1
254~rc2-2
254~rc2-3
254~rc3-1
254~rc3-2
254~rc3-3
254-1
255~rc1-1
255~rc1-2
255~rc1-3
255~rc1-4
255~rc2-1
255~rc2-2
255~rc2-3
255~rc3-1
255~rc3-2
255~rc3-3
255~rc4-1
255~rc4-2
255-1
256~rc1-1~exp
256~rc1-1~exp2
256~rc2-1
256~rc2-2
256~rc2-3
256~rc3-1
256~rc3-2
256~rc3-3
256~rc3-4
256~rc3-5
256~rc3-6

248.*

248.1-1
248.2-1
248.3-1

249.*

249.1-1
249.2-1
249.2-2
249.3-1
249.3-2
249.3-3
249.3-4
249.4-1
249.4-2
249.5-1
249.5-2
249.6-1
249.6-2
249.6-3
249.7-1

250.*

250.1-2
250.2-1
250.2-2
250.2-3
250.3-1
250.3-2~bpo11+1
250.3-2
250.4-1~bpo11+1
250.4-1

251.*

251.1-1
251.2-1
251.2-2
251.2-3
251.2-4
251.2-5
251.2-6
251.2-7
251.2-8
251.3-1~bpo11+1
251.3-1
251.3-2~exp1
251.3-2~exp2
251.3-2
251.4-1
251.4-2
251.4-3
251.5-1
251.5-2
251.5-3
251.6-1

252.*

252.1-1
252.2-1
252.2-2
252.3-1
252.3-2
252.4-1~bpo11+1
252.4-1
252.4-2
252.5-1
252.5-2~bpo11+1
252.5-2
252.6-1
252.6-1+loong64
252.11-1~deb12u1
252.11-1
252.12-1~deb12u1
252.14-1~deb12u1
252.16-1~deb12u1
252.17-1~deb12u1
252.18-1~deb12u1
252.19-1~deb12u1
252.20-1~deb12u1
252.21-1~deb12u1
252.22-1~deb12u1
252.23-1~deb12u1
252.24-1~deb12u1
252.25-1~deb12u1
252.26-1~deb12u1

253.*

253.5-1

254.*

254.1-1
254.1-2
254.1-3
254.3-1
254.4-1
254.5-1~bpo12+1
254.5-1~bpo12+2
254.5-1~bpo12+3
254.5-1

255.*

255.1-1
255.1-2
255.1-3
255.2-1
255.2-2
255.2-3
255.2-4
255.3-1
255.3-2
255.4-1
255.5-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / systemd

Package

Name
systemd
Purl
pkg:deb/debian/systemd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

252.*

252.6-1
252.6-1+loong64
252.11-1~deb12u1
252.11-1
252.12-1~deb12u1
252.14-1~deb12u1
252.16-1~deb12u1
252.17-1~deb12u1
252.18-1~deb12u1
252.19-1~deb12u1
252.20-1~deb12u1
252.21-1~deb12u1
252.22-1~deb12u1
252.23-1~deb12u1
252.24-1~deb12u1
252.25-1~deb12u1
252.26-1~deb12u1

Other

253~rc2-1
253~rc3-1
253-1
253-2
253-3
253-4
254~rc1-1
254~rc1-2
254~rc1-3
254~rc1-4
254~rc2-1
254~rc2-2
254~rc2-3
254~rc3-1
254~rc3-2
254~rc3-3
254-1
255~rc1-1
255~rc1-2
255~rc1-3
255~rc1-4
255~rc2-1
255~rc2-2
255~rc2-3
255~rc3-1
255~rc3-2
255~rc3-3
255~rc4-1
255~rc4-2
255-1
256~rc1-1~exp
256~rc1-1~exp2
256~rc2-1
256~rc2-2
256~rc2-3
256~rc3-1
256~rc3-2
256~rc3-3
256~rc3-4
256~rc3-5
256~rc3-6

253.*

253.5-1

254.*

254.1-1
254.1-2
254.1-3
254.3-1
254.4-1
254.5-1~bpo12+1
254.5-1~bpo12+2
254.5-1~bpo12+3
254.5-1

255.*

255.1-1
255.1-2
255.1-3
255.2-1
255.2-2
255.2-3
255.2-4
255.3-1
255.3-2
255.4-1
255.5-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / systemd

Package

Name
systemd
Purl
pkg:deb/debian/systemd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

252.*

252.6-1
252.6-1+loong64
252.11-1~deb12u1
252.11-1
252.12-1~deb12u1
252.14-1~deb12u1
252.16-1~deb12u1
252.17-1~deb12u1
252.18-1~deb12u1
252.19-1~deb12u1
252.20-1~deb12u1
252.21-1~deb12u1
252.22-1~deb12u1
252.23-1~deb12u1
252.24-1~deb12u1
252.25-1~deb12u1
252.26-1~deb12u1

Other

253~rc2-1
253~rc3-1
253-1
253-2
253-3
253-4
254~rc1-1
254~rc1-2
254~rc1-3
254~rc1-4
254~rc2-1
254~rc2-2
254~rc2-3
254~rc3-1
254~rc3-2
254~rc3-3
254-1
255~rc1-1
255~rc1-2
255~rc1-3
255~rc1-4
255~rc2-1
255~rc2-2
255~rc2-3
255~rc3-1
255~rc3-2
255~rc3-3
255~rc4-1
255~rc4-2
255-1
256~rc1-1~exp
256~rc1-1~exp2
256~rc2-1
256~rc2-2
256~rc2-3
256~rc3-1
256~rc3-2
256~rc3-3
256~rc3-4
256~rc3-5
256~rc3-6

253.*

253.5-1

254.*

254.1-1
254.1-2
254.1-3
254.3-1
254.4-1
254.5-1~bpo12+1
254.5-1~bpo12+2
254.5-1~bpo12+3
254.5-1

255.*

255.1-1
255.1-2
255.1-3
255.2-1
255.2-2
255.2-3
255.2-4
255.3-1
255.3-2
255.4-1
255.5-1

Ecosystem specific

{
    "urgency": "unimportant"
}