UBUNTU-CVE-2024-55566

Source
https://ubuntu.com/security/CVE-2024-55566
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-55566.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-55566
Related
Published
2024-12-09T02:15:00Z
Modified
2025-01-13T10:26:50Z
Summary
[none]
Details

ColPack 1.0.10 through 9a7293a has a predictable temporary file (located under /tmp with a name derived from an unseeded RNG). The impact can be overwriting files or making ColPack graphing unavailable to other users.

References

Affected packages

Ubuntu:Pro:16.04:LTS / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.9-3.2?arch=source&distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.9-3.2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.10-2?arch=source&distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.10-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.10-4build1?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.10-4
1.0.10-4build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.10-6?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.10-5
1.0.10-6

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.10-8?arch=source&distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.10-7.1build1
1.0.10-8

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / colpack

Package

Name
colpack
Purl
pkg:deb/ubuntu/colpack@1.0.10-7.1build1?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.0.10-7
1.0.10-7.1
1.0.10-7.1build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}