CVE-2016-10351

Metadata

low
2.1
telegram-desktop
CVE-2016-10351
cve.mitre.org, github.com
2017-04-30
2017-10-23 14:24
CVE-2016-10351 telegram-desktop
2017-06-16 19:17
2017-05-10 23:55
2017-05-01 19:03

Description

Telegram Desktop 0.10.19 uses 0755 permissions for $HOME/.TelegramDesktop, which allows local users to obtain sensitive authentication information via standard filesystem operations.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

None

Unaffected

Release Package Reason
precise telegram-desktop DNE
precise/esm telegram-desktop DNE
trusty telegram-desktop DNE
vivid/stable-phone-overlay telegram-desktop DNE
vivid/ubuntu-core telegram-desktop DNE
xenial telegram-desktop DNE
yakkety telegram-desktop DNE

Needs Triage

Release Package Reason
upstream telegram-desktop needs-triage
zesty telegram-desktop needs-triage
artful telegram-desktop needs-triage
devel telegram-desktop needs-triage