Lucene search
K

4 matches found

OSV
OSV
added 2025/11/17 2:22 a.m.6 views

HSEC-2025-0006 Private key leak via inherited file descriptor

Private key leak via inherited file descriptor The X.509 key reading function readKeyFile opened a file descriptor to the private key without setting the close-on-exec flag. If a child process is execed at the same time, it would inherit that file descriptor and could read the private key materia...

6.7AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:56 a.m.4 views

SUSE CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS7AI score0.02813EPSS
Exploits0References4
OSV
OSV
added 2019/06/04 9:29 p.m.1 views

DEBIAN-CVE-2019-12210

In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debugfile, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it...

8.1CVSS6.5AI score0.0187EPSS
Exploits1References1
OSV
OSV
added 2017/05/01 6:59 a.m.3 views

DEBIAN-CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS6.9AI score0.02813EPSS
Exploits0References1
Rows per page
Query Builder