3 matches found
CVE-2020-15704
The modprobe child process in the ./debian/patches/loadpppgenericifneeded patch file incorrectly handled module loading. A local non-root attacker could exploit the MODPROBEOPTIONS environment variable to read arbitrary root files. Fixed in 2.4.5-5ubuntu1.4, 2.4.5-5.1ubuntu2.3+esm2,...
CVE-2020-15704
CVE-2020-15704 concerns the modprobe child process in the patch that handles loading the pppd module during startup. The patch file ./debian/patches/load_ppp_generic_if_needed improperly loads modules, enabling a local, non-root attacker to read arbitrary root files via the MODPROBE_OPTIONS envir...
CVE-2020-15704
The modprobe child process in the ./debian/patches/loadpppgenericifneeded patch file incorrectly handled module loading. A local non-root attacker could exploit the MODPROBEOPTIONS environment variable to read arbitrary root files. Fixed in 2.4.5-5ubuntu1.4, 2.4.5-5.1ubuntu2.3+esm2,...