GCVE - cpe:2.3:a:gentoo:portage:2.0.50:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:gentoo:portage:2.0.50:-:*:*:*:*:*:*

part: a version: 2.0.50 update: -

Vendor	Gentoo (`7fa277de-5a05-5db1-a5d1-2f4db074c494`)
Product	Portage (`4f646bfd-706c-5e8f-bcb7-1fca1a99d931`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/gentoo/portage`	purl2cpe	2026-06-01 10:12:48.620233
`pkg:pypi/portage`	purl2cpe	2026-06-01 10:12:48.620234

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2004-1901`	vulnerable	2026-06-03 14:26:45.735987	Details available Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles. Published: 2005-05-10T04:00:00.000Z Updated: 2025-01-16T18:09:40.758Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/10060 http://security.gentoo.org/glsa/glsa-200404-01.xml http://secunia.com/advisories/11305 https://exchange.xforce.ibmcloud.com/vulnerabilities/15754	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.