1
Candidate: CVE-2015-3248
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3248
5
https://bugzilla.redhat.com/show_bug.cgi?id=1233520
6
http://openhpi.org/Changelogs/3.6.0
8
openhpi/Makefile.am in OpenHPI before 3.6.0 uses world-writable permissions
9
for /var/lib/openhpi directory, which allows local users, when quotas are
10
not properly setup, to fill the filesystem hosting /var/lib and cause a
11
denial of service (disk consumption).
14
sbeattie> directory is world-readable but not world-writable in
17
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=789543
18
http://sourceforge.net/p/openhpi/bugs/1883/
24
upstream: http://sourceforge.net/p/openhpi/code/7638
25
upstream_openhpi: released (3.6.0)
26
precise_openhpi: ignored (reached end-of-life)
27
precise/esm_openhpi: needs-triage
28
trusty_openhpi: needs-triage
29
vivid_openhpi: ignored (reached end-of-life)
30
vivid/stable-phone-overlay_openhpi: DNE
31
vivid/ubuntu-core_openhpi: DNE
32
wily_openhpi: ignored (reached end-of-life)
33
xenial_openhpi: needs-triage
34
yakkety_openhpi: ignored (reached end-of-life)
35
zesty_openhpi: ignored (reached end-of-life)
36
artful_openhpi: needs-triage
37
bionic_openhpi: needs-triage
38
devel_openhpi: needs-triage