CVE-2024-55566

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-55566

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-55566.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-55566

Downstream

DEBIAN-CVE-2024-55566

UBUNTU-CVE-2024-55566

Published

2024-12-09T02:15:19Z

Modified

2025-08-09T19:01:28Z

Summary

[none]

Details

ColPack 1.0.10 through 9a7293a has a predictable temporary file (located under /tmp with a name derived from an unseeded RNG). The impact can be overwriting files or making ColPack graphing unavailable to other users.

References

https://bugzilla.suse.com/show_bug.cgi?id=1225617
https://cwe.mitre.org/data/definitions/335.html
https://github.com/CSCsw/ColPack/blob/9a7293a8dfd66a60434496b8df5ebb4274d70339/src/Utilities/extra.cpp#L184-L190

CVE-2024-55566

Affected packages