An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.

References

bugzilla.redhat.com/show_bug.cgi?id=1870054

nvd.nist.gov/vuln/detail/CVE-2020-24330

www.cve.org/CVERecord?id=CVE-2020-24330

www.openwall.com/lists/oss-security/2020/08/14/1

ubuntucve 1

cbl_mariner 3

cve 1

veracode 1

openvas 16

nessus 27

nvd 1

debiancve 1

prion 1

cvelist 1

rosalinux 1

freebsd 1

redhat 3

photon 4

fedora 1

osv 2

almalinux 1

rocky 1

mageia 1

oraclelinux 1

ibm 1

ubuntucve

CVE-2020-24330

2020-08-13 00:00:00

cbl_mariner

CVE-2020-24330 affecting package trousers for versions less than 0.3.14-7

2024-03-19 17:21:46

CVE-2020-24330 affecting package trousers 0.3.14-7

2020-10-08 18:09:52

CVE-2020-24330 affecting package trousers for versions less than 0.3.14-7

2022-04-09 06:51:41

cve

CVE-2020-24330

2020-08-13 17:15:13

veracode

Privilege Escalation

2021-05-21 14:01:37

openvas

SUSE: Security Advisory (SUSE-SU-2022:2798-1)

2022-08-15 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:2800-1)

2022-08-15 00:00:00

Huawei EulerOS: Security Advisory for trousers (EulerOS-SA-2020-2122)

2020-09-29 00:00:00

nessus

SUSE SLES15 Security Update : trousers (SUSE-SU-2022:2798-1)

2022-08-13 00:00:00

SUSE SLES12 Security Update : trousers (SUSE-SU-2022:2800-1)

2022-08-13 00:00:00

EulerOS 2.0 SP2 : trousers (EulerOS-SA-2020-2402)

2020-11-03 00:00:00

nvd

CVE-2020-24330

2020-08-13 17:15:13

debiancve

CVE-2020-24330

2020-08-13 17:15:13

prion

Code injection

2020-08-13 17:15:00

cvelist

CVE-2020-24330

2020-08-13 16:19:09

rosalinux

Advisory ROSA-SA-2021-1989

2021-07-02 18:17:58

freebsd

security/trousers -- several vulnerabilities

2020-05-20 00:00:00

redhat

(RHSA-2021:1627) Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

(RHSA-2021:2461) Moderate: Red Hat Advanced Cluster Management 2.2.4 security and bug fix update

2021-06-16 15:19:08

(RHSA-2021:2121) Moderate: OpenShift Container Platform 4.7.13 bug fix and security update

2021-06-01 04:39:40

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0277

2020-08-25 00:00:00

Important Photon OS Security Update - PHSA-2020-0131

2020-08-27 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0131

2020-08-27 00:00:00

fedora

[SECURITY] Fedora 33 Update: trousers-0.3.14-4.fc33

2020-11-05 01:04:09

osv

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

almalinux

Moderate: trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

rocky

trousers security, bug fix, and enhancement update

2021-05-18 05:41:50

mageia

Updated trousers packages fix security vulnerabilities

2021-06-29 01:51:23

oraclelinux

trousers security, bug fix, and enhancement update

2021-05-25 00:00:00

ibm

Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to several CVEs

2021-10-19 15:38:04

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.001

Percentile

21.0%

JSON

Related for RH:CVE-2020-24330