CVE-2020-35766

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-35766

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-35766.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-35766

Related

UBUNTU-CVE-2020-35766

Published

2020-12-28T20:15:13Z

Modified

2024-10-12T06:34:19.431080Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file (related to t-testdata.h, t-setup.c, and t-cleanup.c). NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs are included here for unit-testing the library" situation.

References

Affected packages

Debian:11 / opendkim

Package

Name: opendkim
Purl: pkg:deb/debian/opendkim?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-4

2.11.0~beta2-4+deb11u1

2.11.0~beta2-5

2.11.0~beta2-6

2.11.0~beta2-7

2.11.0~beta2-8

2.11.0~beta2-9

2.11.0~beta2-9.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / opendkim

Package

Name: opendkim
Purl: pkg:deb/debian/opendkim?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-8

2.11.0~beta2-8+deb12u1

2.11.0~beta2-9

2.11.0~beta2-9.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / opendkim

Package

Name: opendkim
Purl: pkg:deb/debian/opendkim?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.11.0~beta2-8

2.11.0~beta2-9

2.11.0~beta2-9.1

Ecosystem specific

{
    "urgency": "unimportant"
}

Git / github.com/trusteddomainproject/opendkim

Affected ranges

Type: GIT
Repo: https://github.com/trusteddomainproject/opendkim
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

cf1b96054c9d1e395417eda46b6038a1ab7a904f

Affected versions

Other

rel-opendkim-2-10-0

rel-opendkim-2-10-0-Beta0

rel-opendkim-2-10-0-Beta1

rel-opendkim-2-10-0-Beta2

rel-opendkim-2-10-1

rel-opendkim-2-10-2

rel-opendkim-2-10-3

rel-opendkim-2-2-2

rel-opendkim-2-3-0

rel-opendkim-2-3-0-Beta0

rel-opendkim-2-3-0-Beta1

rel-opendkim-2-3-0-Beta2

rel-opendkim-2-3-0-Beta3

rel-opendkim-2-3-0-Beta4

rel-opendkim-2-3-0-Beta5

rel-opendkim-2-3-0-Beta6

rel-opendkim-2-3-0-Beta7

rel-opendkim-2-3-0-Beta8

rel-opendkim-2-3-0-Beta9

rel-opendkim-2-3-1

rel-opendkim-2-3-1-Beta0

rel-opendkim-2-3-1-Beta1

rel-opendkim-2-3-1-Beta2

rel-opendkim-2-3-1-Beta3

rel-opendkim-2-3-1-Beta4

rel-opendkim-2-3-1-Beta5

rel-opendkim-2-3-1-Beta6

rel-opendkim-2-3-2

rel-opendkim-2-3-2-Beta0

rel-opendkim-2-3-2-Beta1

rel-opendkim-2-3-2-Beta2

rel-opendkim-2-3-2-Beta3

rel-opendkim-2-3-2-Beta4

rel-opendkim-2-3-2-Beta5

rel-opendkim-2-4-0

rel-opendkim-2-4-0-Beta0

rel-opendkim-2-4-0-Beta1

rel-opendkim-2-4-0-Beta2

rel-opendkim-2-4-0-Beta3

rel-opendkim-2-4-0-Beta4

rel-opendkim-2-4-0-Beta5

rel-opendkim-2-4-0-Beta6

rel-opendkim-2-4-1

rel-opendkim-2-4-2

rel-opendkim-2-4-3

rel-opendkim-2-5-0

rel-opendkim-2-5-0-1

rel-opendkim-2-5-0-Beta0

rel-opendkim-2-5-0-Beta1

rel-opendkim-2-5-0-Beta10

rel-opendkim-2-5-0-Beta11

rel-opendkim-2-5-0-Beta12

rel-opendkim-2-5-0-Beta13

rel-opendkim-2-5-0-Beta14

rel-opendkim-2-5-0-Beta15

rel-opendkim-2-5-0-Beta2

rel-opendkim-2-5-0-Beta3

rel-opendkim-2-5-0-Beta4

rel-opendkim-2-5-0-Beta5

rel-opendkim-2-5-0-Beta6

rel-opendkim-2-5-0-Beta7

rel-opendkim-2-5-0-Beta8

rel-opendkim-2-5-0-Beta9

rel-opendkim-2-5-1

rel-opendkim-2-5-2

rel-opendkim-2-6-0

rel-opendkim-2-6-0-Beta0

rel-opendkim-2-6-0-Beta1

rel-opendkim-2-6-0-Beta2

rel-opendkim-2-6-0-Beta3

rel-opendkim-2-6-0-Beta4

rel-opendkim-2-6-0-Beta5

rel-opendkim-2-6-1

rel-opendkim-2-6-2

rel-opendkim-2-6-3

rel-opendkim-2-6-4

rel-opendkim-2-6-5

rel-opendkim-2-6-6

rel-opendkim-2-6-7

rel-opendkim-2-7-0

rel-opendkim-2-7-0-Beta0

rel-opendkim-2-7-0-Beta1

rel-opendkim-2-7-0-Beta2

rel-opendkim-2-7-0-Beta3

rel-opendkim-2-7-0-Beta4

rel-opendkim-2-7-0-Beta5

rel-opendkim-2-7-1

rel-opendkim-2-7-2

rel-opendkim-2-7-3

rel-opendkim-2-7-4

rel-opendkim-2-8-0

rel-opendkim-2-8-0-Beta0

rel-opendkim-2-8-0-Beta1

rel-opendkim-2-8-0-Beta2

rel-opendkim-2-8-0-Beta3

rel-opendkim-2-8-0-Beta4

rel-opendkim-2-8-0-Beta5

rel-opendkim-2-8-0-Beta6

rel-opendkim-2-8-0-Beta7

rel-opendkim-2-8-1

rel-opendkim-2-8-1-Beta0

rel-opendkim-2-8-2

rel-opendkim-2-8-3

rel-opendkim-2-8-4

rel-opendkim-2-8-4-Beta0

rel-opendkim-2-8-4-Beta1

rel-opendkim-2-8-4-Beta2

rel-opendkim-2-9-0

rel-opendkim-2-9-0-Beta0

rel-opendkim-2-9-0-Beta1

rel-opendkim-2-9-0-Beta2

rel-opendkim-2-9-1

rel-opendkim-2-9-1-Beta0

rel-opendkim-2-9-1-Beta1

rel-opendkim-2-9-1-Beta2

rel-opendkim-2-9-1-Beta3

rel-opendkim-2-9-1-Beta4

rel-opendkim-2-9-2

rel-opendkim-2-9-2-Beta0