Flintqs
Monthly
SageMath FlintQS 1.0 relies on pathnames under TMPDIR (typically world-writable), which (for example) allows a local user to overwrite files with the privileges of a different user (who is running. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.
SageMath FlintQS 1.0 relies on pathnames under TMPDIR (typically world-writable), which (for example) allows a local user to overwrite files with the privileges of a different user (who is running. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.