Mageia 7: MGASA-2020-0403 Moderate: Junit Local Info Disclosure
mageia
November 8, 2020
It was discovered that junit contained a local information disclosure vulnerability
Summary
It was discovered that junit contained a local information disclosure
vulnerability. On Unix like systems, the system's temporary directory is
shared between all users on that system. Because of this, when files and
directories are written into this directory they are, by default, readable by
other users on that same system. This vulnerability does not allow other usersto overwrite the contents of these directories or files. This is purely an
information disclosure vulnerability (CVE-2020-15250).
References
- https://bugs.mageia.org/show_bug.cgi?id=27555
- https://lists.debian.org/debian-lts-announce/2020/11/msg00003.html
- https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp
- https://www.cve.org/CVERecord?id=CVE-2020-15250
Topics Covered
Resolution
SRPMS
- 7/core/junit-4.12-7.1.mga7
PREVIOUS 
NEXT Publication date: 08 Nov 2020
URL: https://advisories.mageia.org/MGASA-2020-0403.html
Type: security
CVE: CVE-2020-15250
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!