CVE-2019-12779

Name: CVE-2019-12779
Creator: NVD / NIST
Published: 2019-06-07T20:29:00.857+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.66%

Last modified Jun 17, 2026

CVE-2019-12779 is a vulnerability of currently unknown severity. libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.. EPSS estimates a 0.66% chance of exploitation in the next 30 days.

Description

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.

Metrics

EPSS Probability

0.66%

46.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-59

Affected Software

Vendor	Product	Versions
Clusterlabs	Libqb	< 1.0.5

References

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00017.html
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00027.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00031.html
http://www.securityfocus.com/bid/108691Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3610
https://bugzilla.redhat.com/show_bug.cgi?id=1695948Exploit, Patch, Third Party Advisory, VDB Entry
https://github.com/ClusterLabs/libqb/issues/338Exploit, Issue Tracking, Patch, Third Party Advisory
https://github.com/ClusterLabs/libqb/releases/tag/v1.0.4Release Notes, Third Party Advisory
https://github.com/ClusterLabs/libqb/releases/tag/v1.0.5Release Notes, Third Party Advisory
https://security.gentoo.org/glsa/202107-03
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00017.html
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00027.html
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00031.html
http://www.securityfocus.com/bid/108691Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3610
https://bugzilla.redhat.com/show_bug.cgi?id=1695948Exploit, Patch, Third Party Advisory, VDB Entry
https://github.com/ClusterLabs/libqb/issues/338Exploit, Issue Tracking, Patch, Third Party Advisory
https://github.com/ClusterLabs/libqb/releases/tag/v1.0.4Release Notes, Third Party Advisory
https://github.com/ClusterLabs/libqb/releases/tag/v1.0.5Release Notes, Third Party Advisory
https://security.gentoo.org/glsa/202107-03

Timeline

Published: Jun 7, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-12779?

libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.

How severe is CVE-2019-12779?

Severity scoring for CVE-2019-12779 is pending analysis. The EPSS model estimates a 0.66% probability of exploitation in the next 30 days.

How do I fix CVE-2019-12779?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-12779?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST