Launchpad CVE tracker

CVE 2013-7458

linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history, which allows local users to obtain sensitive information by reading the file.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugs.debian.or...
CONFIRM: https://github.com/ant...
CONFIRM: https://github.com/ant...
CONFIRM: https://github.com/ant...
CONFIRM: https://github.com/ant...
CONFIRM: https://github.com/ant...
CONFIRM: https://github.com/ant...
DEBIAN: DSA-3634
SUSE: openSUSE-SU-2016:1980
SUSE: openSUSE-SU-2016:1981

Launchpad.net

CVE 2013-7458

Related bugs

References