Lucene search
+L

71 matches found

0day.today
0day.today
added 2020/04/11 12:0 a.m.43 views

Linux 5.3 Insecure Root Path Handling Exploit

Linux versions 5.3 and above appear to have an issue where iouring suffers from insecure handling of the root directory for path lookups. Linux =5.3: iouring: insecure handling of root directory for path lookups When I saw today, I realized that this is not just a small correctness issue, but als...

0.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/11/12 7:37 p.m.35 views

CVE-2019-18684

Sudo through 1.8.29 allows local users to escalate to root if they have write access to file descriptor 3 of the sudo process. This occurs because of a race condition between determining a uid, and the setresuid and openat system calls. The attacker can write "ALL ALL=ALL NOPASSWD:ALL" to...

7CVSS6.9AI score0.00294EPSS
Exploits1References3
OSV
OSV
added 2017/05/01 6:59 a.m.5 views

DEBIAN-CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS6.9AI score0.02813EPSS
Exploits0References1
CVE
CVE
added 2017/05/01 6:8 a.m.66 views

CVE-2016-8649

CVE-2016-8649 affects the LXC project: vulnerable in lxc-attach within LXC before 1.0.9 and 2.x before 2.0.6, allowing an unprivileged container to escape to the host filesystem via an inherited host /proc fd. Underlying issue is a guest escape Vulnerability via ptrace of lxc-attach. Affected ver...

9.1CVSS8.9AI score0.02813EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2017/05/01 6:8 a.m.28 views

CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1AI score0.02813EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2017/05/01 6:8 a.m.56 views

CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS9.2AI score0.02813EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2016/11/23 4:0 p.m.22 views

CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS7.2AI score0.02813EPSS
Exploits0References2
OSV
OSV
added 2016/11/23 4:0 p.m.4 views

UBUNTU-CVE-2016-8649

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat family of syscalls...

9.1CVSS7.3AI score0.02813EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.14 views

Fedora 23 : glibc-2.22-6.fc23 (2015-7174c4d68d)

This update re-adds large file support to the openat function, removes support for the LDPOINTERGUARD environment variable which could be used to weaken security protections in ATSECURE/SUID binaries, and adds function pointer obfuscation to the TLS destructor list. Note that Tenable Network...

5.5AI score
Exploits0References3
OSV
OSV
added 2015/08/31 10:59 a.m.3 views

DEBIAN-CVE-2015-5706

Use-after-free vulnerability in the pathopenat function in fs/namei.c in the Linux kernel 3.x and 4.x before 4.0.4 allows local users to cause a denial of service or possibly have unspecified other impact via OTMPFILE filesystem operations that leverage a duplicate cleanup operation...

4.6CVSS6.5AI score0.00436EPSS
Exploits0References1
OSV
OSV
added 2015/08/03 12:0 a.m.3 views

UBUNTU-CVE-2015-5706

Use-after-free vulnerability in the pathopenat function in fs/namei.c in the Linux kernel 3.x and 4.x before 4.0.4 allows local users to cause a denial of service or possibly have unspecified other impact via OTMPFILE filesystem operations that leverage a duplicate cleanup operation...

4.6CVSS6.8AI score0.00436EPSS
Exploits0References9
Rows per page
Query Builder