4 matches found
SUSE CVE-2021-25630
"loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and refuses to run with privileges, if it's not the case. In the vulnerable version of "loolforkit" this...
CVE-2021-25630
creationtimestamp| type| source ---|---|--- 2021-02-23 18:35:08+00:00| seen| Telegram/ueE3CjXrxyI9Gq8MpQ2oVCuJhyYWpEkdK0-NeZlSIioVCY...
CVE-2021-25630
"loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and refuses to run with privileges, if it's not the case. In the vulnerable version of "loolforkit" this...
CVE-2021-25630
The CVE-2021-25630 issue is in the Collabora Online component "loolforkit": the check that should ensure invocation by the non-privileged user "lool" is incorrect in the vulnerable release, allowing a normal user to start loolforkit and potentially achieve local root privileges. The connected sou...