SecuritySpace - CVE-2017-18196

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-18196

Description: Leptonica 1.74.4 constructs unintended pathnames (containing duplicated path components) when operating on files in /tmp subdirectories, which might allow local users to bypass intended file restrictions by leveraging access to a directory located deeper within the /tmp directory tree, as demonstrated by /tmp/ANY/PATH/ANY/PATH/input.tif.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-18196
https://security.gentoo.org/glsa/202312-01
https://bugs.debian.org/885704

CVE ID:	CVE-2017-18196
Description:	Leptonica 1.74.4 constructs unintended pathnames (containing duplicated path components) when operating on files in /tmp subdirectories, which might allow local users to bypass intended file restrictions by leveraging access to a directory located deeper within the /tmp directory tree, as demonstrated by /tmp/ANY/PATH/ANY/PATH/input.tif.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-18196 https://security.gentoo.org/glsa/202312-01 https://bugs.debian.org/885704