ALPINE-CVE-2026-35385

In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is performed as root with -O legacy scp protocol and without -p preserve mode...

CVE-2020-11936

gdbus setgid privilege escalation...

The vulnerability of the util-linux package on Linux operating systems allows a hacker to gain unauthorized access to passwords or modify the user’s swap space.

The vulnerability of the util-linux package on Linux operating systems is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to passwords or modify the user’s swap file by using the wall command with...

UBUNTU-CVE-2020-11936

gdbus setgid privilege escalation...

CVE-2017-5551

The simplesetacl function in fs/posixacl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions. NOT...

CVE-2008-4210

fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable...

BSDi 3.0/4.0 rcvtty gid=tty exploit... (mh package)

well, i dont know if rcvtty is suppost to be setgid in general, since ive never seen it setgid on anything but BSDi 3.0 and 4.0. but none-the-less, here is a exploit i wrote for it: original ver: http://realhalo.org/xrcvtty.c xrcvtty.cmodified from original: ---------------------------------- /...