CVE-2019-18192
published 2019-10-17CVE-2019-18192: GNU Guix 1.0.1 allows local users to gain access to an arbitrary user's account because the parent directory of the user-profile directories is world writable…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
GNU Guix 1.0.1 allows local users to gain access to an arbitrary user's account because the parent directory of the user-profile directories is world writable, a similar issue to CVE-2019-17365.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | guix | — | — |
| gnu | guix | — | — |