10 matches found
CVE-2026-35370
The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID instead of their effective GID to compute the group list, leading to potentially divergent output compared to GNU coreutils. Because many scripts and automated processes...
Duplicate Advisory: uutils coreutils has an Incorrect Authorization issue
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-47c7-qrm7-mqw7. This link is maintained to preserve external references. Original Description The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's...
CVE-2026-35370
The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID instead of their effective GID to compute the group list, leading to potentially divergent output compared to GNU coreutils. Because many scripts and automated processes...
CVE-2026-35370 uutils coreutils id Incorrect Access-Control Decisions via Misrepresented Group Membership
The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID instead of their effective GID to compute the group list, leading to potentially divergent output compared to GNU coreutils. Because many scripts and automated processes...
Linux Distros Unpatched Vulnerability : CVE-2026-35370
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID instead of their effective GID to...
GO-2023-1671 Non-interactive Tailscale SSH sessions on FreeBSD may use the effective group ID of the tailscaled process in tailscale.com
Non-interactive Tailscale SSH sessions on FreeBSD may use the effective group ID of the tailscaled process in tailscale.com...
CVE-2011-3145
When mount.ecrpytfsprivate before version 87-0ubuntu1.2 calls setreuid it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfsprivate...
Security fix for the ALT Linux 9 package krb5 version 1.6.3-alt13
July 6, 2011 Ivan A. Melnikov 1.6.3-alt13 - check if ftp daemon fails to set effective group id MITKRB5-SA-2011-005, CVE-2011-1526...
Security fix for the ALT Linux 8 package krb5 version 1.6.3-alt13
July 6, 2011 Ivan A. Melnikov 1.6.3-alt13 - check if ftp daemon fails to set effective group id MITKRB5-SA-2011-005, CVE-2011-1526...
Переполнение буфера в mail из SunOS (buffer overflow)
Переполнение убфера при копировании переменной HOME дает egid mail...