CVE-2016-5746 : libstorage, libstorage-ng, and yast-storage improperly store passphrases for enc

libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by reading the file, as demonstrated by /tmp/libstorage-XXXXXX/pwdf.

Published 2016-09-26 15:59:00

Updated 2025-04-12 10:46:41

Source OpenText

View at NVD, CVE.org

Products affected by CVE-2016-5746

Opensuse » Libstorage-ng » Version: N/A
cpe:2.3:a:opensuse:libstorage-ng:-:*:*:*:*:*:*:*
Matching versions
Opensuse » Libstorage » Version: N/A
cpe:2.3:a:opensuse:libstorage:-:*:*:*:*:*:*:*
Matching versions
Opensuse » Leap » Version: 42.1
cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
Matching versions
Yast » Yast-storage » Version: N/A
cpe:2.3:a:yast:yast-storage:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-5746

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 15 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-5746

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
1.2	LOW	AV:L/AC:H/Au:N/C:P/I:N/A:N	1.9	2.9	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
5.1	MEDIUM	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N	1.4	3.6	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

References for CVE-2016-5746

https://github.com/yast/yast-storage/pull/223

SLE-11 SP4: Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #223 · yast/yast-storage · GitHub
https://github.com/yast/yast-storage/pull/226

SLE-11 SP1: Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #226 · yast/yast-storage · GitHub
https://github.com/openSUSE/libstorage/pull/163

SLE-12 GA: Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #163 · openSUSE/libstorage · GitHub
https://bugzilla.suse.com/show_bug.cgi?id=986971

Bug 986971 – VUL-0: CVE-2016-5746: libstorage,yast2-storage:: encryption passphrases written to temporary files on disk
https://github.com/yast/yast-storage/pull/224

SLE-11 SP3: Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #224 · yast/yast-storage · GitHub
https://github.com/openSUSE/libstorage-ng/pull/123

Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #123 · openSUSE/libstorage-ng · GitHub
http://lists.opensuse.org/opensuse-updates/2016-09/msg00032.html

openSUSE-SU-2016:2264-1: moderate: Security update for libstorage
https://github.com/yast/yast-storage/pull/227

[SLE-10 SP3] Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #227 · yast/yast-storage · GitHub
https://github.com/openSUSE/libstorage/pull/162

SLE-12 SP1: Use stdin, not tmp files for passwords (bsc#986971) by shundhammer · Pull Request #162 · openSUSE/libstorage · GitHub
http://www.securityfocus.com/bid/93169

libstorage CVE-2016-5746 Insecure File Permissions Vulnerability

Jump to

Vulnerability Details : CVE-2016-5746

Products affected by CVE-2016-5746

Exploit prediction scoring system (EPSS) score for CVE-2016-5746

CVSS scores for CVE-2016-5746

References for CVE-2016-5746