Homebrew: Homebrew privilege escalation vulnerability

2019-06-02T08:24:02
ID H1:593926
Type hackerone
Reporter hi_ztz
Modified 2019-06-27T08:33:44

Description

Additional symlinks/directories that were not chownd by brew services needed to be added to avoid the replacement of the opt prefix link. Homebrew has a privilege escalation vulnerability which can cause an attacker easily gain root permission.