2 matches found
rpm: checks for unsafe symlinks are not performed for intermediary directories
It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threa...
CVE-2017-7501
creationtimestamp| type| source ---|---|--- 2022-08-26 00:24:10+00:00| seen| https://t.me/cibsecurity/48820 2022-08-26 20:30:35+00:00| seen| https://t.me/cibsecurity/48898...