CVE-2001-0474Paul Mesa vulnerability

3 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 66.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Brian Paul MesaMandrakesoft Mandrake Linux
Timeline
PublishedJun 27
Latest updateApr 30

Description

Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/glxmemory file.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDbrian_paul/mesa3.3-14

Patches

Patch: www.linux-mandrake.comPatch: www.linux-mandrake.com

🔴Vulnerability Details

2
GHSA
GHSA-x955-p245-jg2j: Utah-glx in Mesa before 32022-04-30
CVEList
CVE-2001-0474: Utah-glx in Mesa before 32001-09-18