Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16~exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable permissions for /var/log/apt/term.log, which allows local users to obtain sensitive shell information by reading the log file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ubuntu APT 不安全文件权限本地信息泄露漏洞
Vulnerability Description
Ubuntu是英国科能(Canonical)公司和Ubuntu基金会共同开发的一套以桌面应用为主的GNU/Linux操作系统。 使用在Ubuntu中的Apt 0.8.16~exp5ubuntu13.6之前的0.8.16~exp5ubuntu13.x版本、0.8.16~exp12ubuntu10.7之前的0.8.16~exp12ubuntu10.x版本以及0.9.7.5ubuntu5.2之前的0.9.7.5ubuntu5.x版本中存在漏洞,该漏洞源于/var/log/apt/term.log使用全局读取权限
CVSS Information
N/A
Vulnerability Type
N/A