CVE-2019-12779
Published
CVSS v3
N/A
CVSS v2
6.6
MEDIUM
Affected
1
PROJECT
Description
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.
libqb is a library providing high performance logging, tracing, ipc, and poll.
GitHub