Vulnerability & Exploit Database

Back to search

Ubuntu: (Multiple Advisories) (CVE-2017-10140): Berkeley DB vulnerability

Severity CVSS Published Added Modified
5 (AV:L/AC:L/Au:N/C:P/I:P/A:P) November 21, 2017 November 22, 2017 June 04, 2018

Description

Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

ubuntu-upgrade-db4-8-util