Debian Networkd-Dispatcher vulnerabilities
2 known vulnerabilities affecting debian/networkd-dispatcher.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
LOW2
Vulnerabilities
Page 1 of 1
CVE-2022-29799P3LOWCVSS 5.5fixed in networkd-dispatcher 2.2.3-1 (bookworm)2022
CVE-2022-29799 [MEDIUM] CVE-2022-29799: networkd-dispatcher - A vulnerability was found in networkd-dispatcher. This flaw exists because no fu...
A vulnerability was found in networkd-dispatcher. This flaw exists because no functions are sanitized by the OperationalState or the AdministrativeState of networkd-dispatcher. This attack leads to a directory traversal to escape from the “/etc/networkd-dispatcher” base directory.
Scope: local
bookworm: resolved (fixed in 2.2.3-1)
bullseye: open
forky:
debian
CVE-2022-29800P4LOWCVSS 4.7fixed in networkd-dispatcher 2.2.3-1 (bookworm)2022
CVE-2022-29800 [MEDIUM] CVE-2022-29800: networkd-dispatcher - A time-of-check-time-of-use (TOCTOU) race condition vulnerability was found in n...
A time-of-check-time-of-use (TOCTOU) race condition vulnerability was found in networkd-dispatcher. This flaw exists because there is a certain time between the scripts being discovered and them being run. An attacker can abuse this vulnerability to replace scripts that networkd-dispatcher believes to be owned by root with ones that are not.
Scope: loc
debian