130 matches found
CVE-2017-18367
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...
CVE-2017-18367
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...
Design/Logic Flaw
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...
CVE-2017-18367
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...
CVE-2017-18367
CVE-2017-18367 affects libseccomp-golang 0.9.0 and earlier. The root cause is that the BPFs generated by libseccomp-golang OR multiple syscall-argument checks instead of ANDing them, enabling a process under a restrictive seccomp filter that specifies multiple arguments to bypass the intended acc...
GLSA-201904-18 : libseccomp: Privilege escalation
The remote host is affected by the vulnerability described in GLSA-201904-18 libseccomp: Privilege escalation Please review the CVE identifier referenced below for details. Impact : Please review the referenced CVE identifier for details. Workaround : There is no known workaround at this time. C...
libseccomp: Privilege escalation
Background A library that provides an easy to use, platform independent, interface to the Linux Kernel’s syscall filtering mechanism. Description Please review the CVE identifier referenced below for details. Impact Please review the referenced CVE identifier for details. Workaround There is no...
Critical Photon OS Security Update - PHSA-2019-3.0-0009
Updates of 'linux-aws', 'python2', 'python-requests', 'linux-esx', 'libssh2', 'linux', 'linux-secure', 'libseccomp' packages of Photon OS have been released...
Critical Photon OS Security Update - PHSA-2019-0009
Updates of 'python-requests', 'python2', 'linux-esx', 'linux', 'libseccomp', 'linux-secure', 'linux-aws', 'libssh2' packages of Photon OS have been released...
Critical Photon OS Security Update - PHSA-2019-0149
Updates of 'gnupg', 'libseccomp', 'kibana', 'libssh2' packages of Photon OS have been released...
Security fix for the ALT Linux 8 package libseccomp version 2.4.0-alt1
2.4.0-alt1 built April 1, 2019 Alexey Shabalin in task 225578 March 22, 2019 Alexey Shabalin - 2.4.0 - do not build python bindings - Fixes for the following security vulnerabilities: + CVE-2019-9893 64-bit argument comparisons do not work correctly...
CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
ALPINE-CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
DEBIAN-CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
Code injection
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
CVE-2019-9893
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...
CVE-2019-9893
CVE-2019-9893 affects libseccomp prior to 2.4.0, where 64-bit syscall argument comparisons using arithmetic operators (LT, GT, LE, GE) could be generated incorrectly, potentially bypassing seccomp filters and enabling privilege escalation. Multiple upstream and distribution advisories (including ...