NotCVE - vendor:"Libvdpau Project" product:"Libvdpau" version:" <= 1.1.0"

3 results (0.003 seconds)

CVSS: 6.3EPSS: 0%CPEs: 4EXPL: 0

CVE-2015-5200

https://notcve.org/view.php?id=CVE-2015-5200

The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors. Vulnerabilidad en la funcionalidad de rastreo en libvdpau en versiones anteriores a 1.1.1, cuando se usa como una aplicación setuid o setgid, permite a usuarios locales escribir archivos arbitrarios a través de vectores no especificados. • http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170637.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165546.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167469.html http://lists.opensuse.org/opensuse-updates/2015-09/msg00012.html http://lists.x.org/archives/xorg-announce/2015-August/002630.html http://www.debian.org/security/2015/dsa-3355 http://www.securityfocus.com/bid/76636 http://www.ubuntu.com/usn/USN- •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

CVE-2015-5199

https://notcve.org/view.php?id=CVE-2015-5199

Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable. Vulnerabilidad de salto de directorio en dlopen en libvdpau en versiones anteriores a 1.1.1, permite a usuarios locales obtener privilegios a través de la variable de entorno VDPAU_DRIVER. • http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170637.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165546.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167469.html http://lists.opensuse.org/opensuse-updates/2015-09/msg00012.html http://lists.x.org/archives/xorg-announce/2015-August/002630.html http://www.debian.org/security/2015/dsa-3355 http://www.securityfocus.com/bid/76636 http://www.ubuntu.com/usn/USN- • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

CVE-2015-5198

https://notcve.org/view.php?id=CVE-2015-5198

libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable. Vulnerabilidad en libvdpau en versiones anteriores a 1.1.1, cuando se usa como una aplicación setuid o setgid, permite a usuarios locales obtener privilegios a través de vectores no especificados, relacionado con la variable de entorno VDPAU_DRIVER_PATH. • http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170637.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165546.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/167469.html http://lists.opensuse.org/opensuse-updates/2015-09/msg00012.html http://lists.x.org/archives/xorg-announce/2015-August/002630.html http://www.debian.org/security/2015/dsa-3355 http://www.securityfocus.com/bid/76636 http://www.ubuntu.com/usn/USN- • CWE-264: Permissions, Privileges, and Access Controls •