CVE-2011-0995 (sqlite3-ruby): rubygem-sqlite3 gem uses weak file permissions

ADVISORIES

CVE-2011-0995 (NVD)
GHSA-6x46-7rrv-m4h8
OSVDB-72180
Vendor Advisory

GEM

sqlite3-ruby

SEVERITY

CVSS v2.0: 2.1 (Low)

PATCHED VERSIONS

>= 1.2.4

DESCRIPTION

The sqlite3-ruby gem in the rubygem-sqlite3 package before 1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.

https://nvd.nist.gov/vuln/detail/CVE-2011-0995
https://www.suse.com/security/cve/CVE-2011-0995.html
http://www.osvdb.org/72180
https://github.com/advisories/GHSA-6x46-7rrv-m4h8
https://exchange.xforce.ibmcloud.com/vulnerabilities/67263
https://ubuntu.com/security/CVE-2011-0995
https://cve.circl.lu/cve/CVE-2011-0995

RubySec

CVE-2011-0995 (sqlite3-ruby): rubygem-sqlite3 gem uses weak file permissions

ADVISORIES

GEM

SEVERITY

PATCHED VERSIONS

DESCRIPTION

RELATED

Recent Advisories