CVE-2005-3148
First published: Wed Oct 05 2005(Updated: )
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Storebackup Storebackup | =1.1 | |
| Storebackup Storebackup | =1.2 | |
| Storebackup Storebackup | =1.3 | |
| Storebackup Storebackup | =1.4 | |
| Storebackup Storebackup | =1.5 | |
| Storebackup Storebackup | =1.6 | |
| Storebackup Storebackup | =1.7 | |
| Storebackup Storebackup | =1.8 | |
| Storebackup Storebackup | =1.8.1 | |
| Storebackup Storebackup | =1.9 | |
| Storebackup Storebackup | =1.9.1 | |
| Storebackup Storebackup | =1.10 | |
| Storebackup Storebackup | =1.10.1 | |
| Storebackup Storebackup | =1.11 | |
| Storebackup Storebackup | =1.12 | |
| Storebackup Storebackup | =1.12.1 | |
| Storebackup Storebackup | =1.12.2 | |
| Storebackup Storebackup | =1.13 | |
| Storebackup Storebackup | =1.14 | |
| Storebackup Storebackup | =1.15 | |
| Storebackup Storebackup | =1.16 | |
| Storebackup Storebackup | =1.16.1 | |
| Storebackup Storebackup | =1.16.2 | |
| Storebackup Storebackup | =1.17 | |
| Storebackup Storebackup | =1.18 | |
| Storebackup Storebackup | =1.18.1 | |
| Storebackup Storebackup | =1.18.2 | |
| Storebackup Storebackup | =1.18.3 | |
| Storebackup Storebackup | =1.18.4 | |
| SUSE Linux |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-3148?
CVE-2005-3148 is rated as a medium severity vulnerability.
How do I fix CVE-2005-3148?
To fix CVE-2005-3148, upgrade to StoreBackup version 1.19 or later.
What versions of StoreBackup are affected by CVE-2005-3148?
CVE-2005-3148 affects all StoreBackup versions prior to 1.19.
What issues does CVE-2005-3148 cause?
CVE-2005-3148 can lead to restored files having incorrect ownership due to improper uid and guid settings.
Is CVE-2005-3148 fixed in newer releases of StoreBackup?
Yes, CVE-2005-3148 is fixed in StoreBackup version 1.19 and subsequent releases.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/storebackup
- canonical/storebackup storebackup
- version/storebackup storebackup/1.1
- version/storebackup storebackup/1.2
- version/storebackup storebackup/1.3
- version/storebackup storebackup/1.4
- version/storebackup storebackup/1.5
- version/storebackup storebackup/1.6
- version/storebackup storebackup/1.7
- version/storebackup storebackup/1.8
- version/storebackup storebackup/1.8.1
- version/storebackup storebackup/1.9
- version/storebackup storebackup/1.9.1
- version/storebackup storebackup/1.10
- version/storebackup storebackup/1.10.1
- version/storebackup storebackup/1.11
- version/storebackup storebackup/1.12
- version/storebackup storebackup/1.12.1
- version/storebackup storebackup/1.12.2
- version/storebackup storebackup/1.13
- version/storebackup storebackup/1.14
- version/storebackup storebackup/1.15
- version/storebackup storebackup/1.16
- version/storebackup storebackup/1.16.1
- version/storebackup storebackup/1.16.2
- version/storebackup storebackup/1.17
- version/storebackup storebackup/1.18
- version/storebackup storebackup/1.18.1
- version/storebackup storebackup/1.18.2
- version/storebackup storebackup/1.18.3
- version/storebackup storebackup/1.18.4
- vendor/suse
- canonical/suse linux