CVE-2018-12026 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-12026 Interim 1 33 2025-11-05T03:29:15Z current 2021-05-30T14:13:55Z 2025-11-05T03:29:15Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-12026 During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Lifecycle Management Server 1.3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 12 SUSE Studio Onsite 1.3 openSUSE Tumbleweed ruby2.1-rubygem-passenger ruby2.7-rubygem-passenger-6.0.8-3.2 ruby3.0-rubygem-passenger-6.0.8-3.2 rubygem-passenger rubygem-passenger-6.0.8-3.2 rubygem-passenger-apache2 rubygem-passenger-apache2-6.0.8-3.2 rubygem-passenger-nginx rubygem-passenger-nginx-6.0.8-3.2 ruby2.7-rubygem-passenger-6.0.8-3.2 as a component of openSUSE Tumbleweed ruby3.0-rubygem-passenger-6.0.8-3.2 as a component of openSUSE Tumbleweed rubygem-passenger-6.0.8-3.2 as a component of openSUSE Tumbleweed rubygem-passenger-apache2-6.0.8-3.2 as a component of openSUSE Tumbleweed rubygem-passenger-nginx-6.0.8-3.2 as a component of openSUSE Tumbleweed rubygem-passenger as a component of SUSE Lifecycle Management Server 1.3 rubygem-passenger-apache2 as a component of SUSE Lifecycle Management Server 1.3 rubygem-passenger-nginx as a component of SUSE Lifecycle Management Server 1.3 ruby2.1-rubygem-passenger as a component of SUSE Linux Enterprise Module for Containers 12 rubygem-passenger as a component of SUSE Linux Enterprise Module for Containers 12 rubygem-passenger-apache2 as a component of SUSE Linux Enterprise Module for Containers 12 rubygem-passenger as a component of SUSE Studio Onsite 1.3 rubygem-passenger-nginx as a component of SUSE Studio Onsite 1.3 During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace key files or directories in the spawning communication directory with symlinks. This then could result in arbitrary reads and writes, which in turn can result in information disclosure and privilege escalation. CVE-2018-12026 openSUSE Tumbleweed:ruby2.7-rubygem-passenger-6.0.8-3.2 openSUSE Tumbleweed:ruby3.0-rubygem-passenger-6.0.8-3.2 openSUSE Tumbleweed:rubygem-passenger-6.0.8-3.2 openSUSE Tumbleweed:rubygem-passenger-apache2-6.0.8-3.2 openSUSE Tumbleweed:rubygem-passenger-nginx-6.0.8-3.2 SUSE Lifecycle Management Server 1.3:rubygem-passenger SUSE Lifecycle Management Server 1.3:rubygem-passenger-apache2 SUSE Lifecycle Management Server 1.3:rubygem-passenger-nginx SUSE Linux Enterprise Module for Containers 12:ruby2.1-rubygem-passenger SUSE Linux Enterprise Module for Containers 12:rubygem-passenger SUSE Linux Enterprise Module for Containers 12:rubygem-passenger-apache2 SUSE Studio Onsite 1.3:rubygem-passenger SUSE Studio Onsite 1.3:rubygem-passenger-nginx critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H