---

CVE-2019-12447 - log back

CVE-2019-12447 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Local
Type	+ Privilege escalation
Description	+ An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid is not used.
References	+ https://gitlab.gnome.org/GNOME/gvfs/commit/daf1163aba229afcfddf0f925aef7e97047e8959 + https://gitlab.gnome.org/GNOME/gvfs/commit/3895e09d784ebec0fbc4614d5c37068736120e1d
Notes