Lucene search

ROSA LABROSA-SA-2021-1952

HistoryJul 02, 2021 - 5:58 p.m.

Advisory ROSA-SA-2021-1952

2021-07-0217:58:55

ROSA LAB

abf.rosalinux.ru

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Software: policycoreutils 2.5
OS: Cobalt 7.9

CVE-ID: CVE-2014-3215
CVE-Crit: CRITICAL
CVE-DESC: seunshare in policycoreutils 2.2.5 belongs to the root user with permissions 4755 and executes programs in a way that changes the relationship between the setuid system call and the stored set-user-ID getresuid value, making it easier for local users to gain privileges using a program that mistakenly expected it could permanently lose privileges.
CVE-STATUS: default
CVE-REV: default

OSVersionArchitecturePackageVersionFilename
Cobaltanynoarchpolicycoreutils< 2.5UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Cobalt	any	noarch	policycoreutils	< 2.5	UNKNOWN

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for ROSA-SA-2021-1952