mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
82 lines
2.7 KiB
JSON
82 lines
2.7 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "secalert@redhat.com",
|
|
"ID": "CVE-2014-3209",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "[oss-security] 20140503 ldns-keygen creates private key world readable",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2014/05/03/2"
|
|
},
|
|
{
|
|
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746758",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746758"
|
|
},
|
|
{
|
|
"name": "https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=573",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=573"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20140504 Re: ldns-keygen creates private key world readable",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2014/05/05/4"
|
|
},
|
|
{
|
|
"name": "67200",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/67200"
|
|
}
|
|
]
|
|
}
|
|
} |