3 matches found
autofs: priv escalation via interpreter load path for program based automount maps
It was found that program-based automounter maps that used interpreted languages such as Python would use standard environment variables to locate and load modules of those languages. A local attacker could potentially use this flaw to escalate their privileges on the system...
SUSE SLED12 / SLES12 Security Update : autofs (SUSE-SU-2015:1020-1)
autofs was updated to fix one security issue. This security issue was fixed : - CVE-2014-8169: Prevent potential privilege escalation via interpreter load path for program-based automount maps bnc917977. The update package also includes non-security fixes. See advisory for details. Note that...
openSUSE Security Update : autofs (openSUSE-2015-220)
The automount service autofs was updated to prevent a potential privilege escalation via interpreter load path for program-based automount maps. bsc917977 CVE-2014-8169 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...