Possible race condition vulnerability in Apache Doris. Some of code using `chmod()` method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file. This could theoretically happen, but the impact would be minimal. This issue affects Apache Doris: before 1.2.8, before 2.0.4. Users are recommended to upgrade to version 2.0.4, which fixes the issue.
History

Thu, 13 Feb 2025 17:45:00 +0000

Type Values Removed Values Added
Description Possible race condition vulnerability in Apache Doris. Some of code using `chmod()` method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file. This could theoretically happen, but the impact would be minimal. This issue affects Apache Doris: before 1.2.8, before 2.0.4. Users are recommended to upgrade to version 2.0.4, which fixes the issue. Possible race condition vulnerability in Apache Doris. Some of code using `chmod()` method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file. This could theoretically happen, but the impact would be minimal. This issue affects Apache Doris: before 1.2.8, before 2.0.4. Users are recommended to upgrade to version 2.0.4, which fixes the issue.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2025-02-13T17:41:13.412Z

Reserved: 2024-02-17T01:50:01.548Z

Link: CVE-2024-26307

cve-icon Vulnrichment

Updated: 2024-08-02T00:07:19.425Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-03-21T10:15:07.527

Modified: 2025-02-13T18:17:19.070

Link: CVE-2024-26307

cve-icon Redhat

No data.