CVE-2020-35766

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-35766
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35766.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-35766
Published
2020-12-28T20:15:13Z
Modified
2024-06-30T13:11:43.322687Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file (related to t-testdata.h, t-setup.c, and t-cleanup.c). NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs are included here for unit-testing the library" situation.

References

Affected packages

Debian:11 / opendkim

Package

Name
opendkim
Purl
pkg:deb/debian/opendkim?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-4
2.11.0~beta2-4+deb11u1
2.11.0~beta2-5
2.11.0~beta2-6
2.11.0~beta2-7
2.11.0~beta2-8
2.11.0~beta2-9

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / opendkim

Package

Name
opendkim
Purl
pkg:deb/debian/opendkim?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-8
2.11.0~beta2-8+deb12u1
2.11.0~beta2-9

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / opendkim

Package

Name
opendkim
Purl
pkg:deb/debian/opendkim?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-8
2.11.0~beta2-9

Ecosystem specific

{
    "urgency": "unimportant"
}

Git / github.com/trusteddomainproject/opendkim

Affected ranges

Type
GIT
Repo
https://github.com/trusteddomainproject/opendkim
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

Other

rel-opendkim-2-10-0
rel-opendkim-2-10-0-Beta0
rel-opendkim-2-10-0-Beta1
rel-opendkim-2-10-0-Beta2
rel-opendkim-2-10-1
rel-opendkim-2-10-2
rel-opendkim-2-10-3
rel-opendkim-2-2-2
rel-opendkim-2-3-0
rel-opendkim-2-3-0-Beta0
rel-opendkim-2-3-0-Beta1
rel-opendkim-2-3-0-Beta2
rel-opendkim-2-3-0-Beta3
rel-opendkim-2-3-0-Beta4
rel-opendkim-2-3-0-Beta5
rel-opendkim-2-3-0-Beta6
rel-opendkim-2-3-0-Beta7
rel-opendkim-2-3-0-Beta8
rel-opendkim-2-3-0-Beta9
rel-opendkim-2-3-1
rel-opendkim-2-3-1-Beta0
rel-opendkim-2-3-1-Beta1
rel-opendkim-2-3-1-Beta2
rel-opendkim-2-3-1-Beta3
rel-opendkim-2-3-1-Beta4
rel-opendkim-2-3-1-Beta5
rel-opendkim-2-3-1-Beta6
rel-opendkim-2-3-2
rel-opendkim-2-3-2-Beta0
rel-opendkim-2-3-2-Beta1
rel-opendkim-2-3-2-Beta2
rel-opendkim-2-3-2-Beta3
rel-opendkim-2-3-2-Beta4
rel-opendkim-2-3-2-Beta5
rel-opendkim-2-4-0
rel-opendkim-2-4-0-Beta0
rel-opendkim-2-4-0-Beta1
rel-opendkim-2-4-0-Beta2
rel-opendkim-2-4-0-Beta3
rel-opendkim-2-4-0-Beta4
rel-opendkim-2-4-0-Beta5
rel-opendkim-2-4-0-Beta6
rel-opendkim-2-4-1
rel-opendkim-2-4-2
rel-opendkim-2-4-3
rel-opendkim-2-5-0
rel-opendkim-2-5-0-1
rel-opendkim-2-5-0-Beta0
rel-opendkim-2-5-0-Beta1
rel-opendkim-2-5-0-Beta10
rel-opendkim-2-5-0-Beta11
rel-opendkim-2-5-0-Beta12
rel-opendkim-2-5-0-Beta13
rel-opendkim-2-5-0-Beta14
rel-opendkim-2-5-0-Beta15
rel-opendkim-2-5-0-Beta2
rel-opendkim-2-5-0-Beta3
rel-opendkim-2-5-0-Beta4
rel-opendkim-2-5-0-Beta5
rel-opendkim-2-5-0-Beta6
rel-opendkim-2-5-0-Beta7
rel-opendkim-2-5-0-Beta8
rel-opendkim-2-5-0-Beta9
rel-opendkim-2-5-1
rel-opendkim-2-5-2
rel-opendkim-2-6-0
rel-opendkim-2-6-0-Beta0
rel-opendkim-2-6-0-Beta1
rel-opendkim-2-6-0-Beta2
rel-opendkim-2-6-0-Beta3
rel-opendkim-2-6-0-Beta4
rel-opendkim-2-6-0-Beta5
rel-opendkim-2-6-1
rel-opendkim-2-6-2
rel-opendkim-2-6-3
rel-opendkim-2-6-4
rel-opendkim-2-6-5
rel-opendkim-2-6-6
rel-opendkim-2-6-7
rel-opendkim-2-7-0
rel-opendkim-2-7-0-Beta0
rel-opendkim-2-7-0-Beta1
rel-opendkim-2-7-0-Beta2
rel-opendkim-2-7-0-Beta3
rel-opendkim-2-7-0-Beta4
rel-opendkim-2-7-0-Beta5
rel-opendkim-2-7-1
rel-opendkim-2-7-2
rel-opendkim-2-7-3
rel-opendkim-2-7-4
rel-opendkim-2-8-0
rel-opendkim-2-8-0-Beta0
rel-opendkim-2-8-0-Beta1
rel-opendkim-2-8-0-Beta2
rel-opendkim-2-8-0-Beta3
rel-opendkim-2-8-0-Beta4
rel-opendkim-2-8-0-Beta5
rel-opendkim-2-8-0-Beta6
rel-opendkim-2-8-0-Beta7
rel-opendkim-2-8-1
rel-opendkim-2-8-1-Beta0
rel-opendkim-2-8-2
rel-opendkim-2-8-3
rel-opendkim-2-8-4
rel-opendkim-2-8-4-Beta0
rel-opendkim-2-8-4-Beta1
rel-opendkim-2-8-4-Beta2
rel-opendkim-2-9-0
rel-opendkim-2-9-0-Beta0
rel-opendkim-2-9-0-Beta1
rel-opendkim-2-9-0-Beta2
rel-opendkim-2-9-1
rel-opendkim-2-9-1-Beta0
rel-opendkim-2-9-1-Beta1
rel-opendkim-2-9-1-Beta2
rel-opendkim-2-9-1-Beta3
rel-opendkim-2-9-1-Beta4
rel-opendkim-2-9-2
rel-opendkim-2-9-2-Beta0