There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an unprivileged user can check for the existence of any files on the system as root.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published: 2020-10-31T03:45:19.526886Z

Updated: 2024-09-16T22:01:51.102Z

Reserved: 2020-07-14T00:00:00

Link: CVE-2020-15703

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-10-31T04:15:10.897

Modified: 2024-11-21T05:06:03.287

Link: CVE-2020-15703

cve-icon Redhat

No data.