2 matches found
CVE-2004-0667
RSBAC 1.2.2–1.2.3 allows access to sys_creat, sys_open, and sys_mknod inside jails, enabling local users to gain elevated privileges. The affected component is the system-call access control in RS BAC; root cause is unsafe exposure of these syscalls within jailed environments. Documented impact i...
CVE-2007-3945
CVE-2007-3945 affects Rule Set Based Access Control (RSBAC) versions prior to 1.3.5. The issue stems from improper use of the Linux Kernel Crypto API for Linux kernel 2.6.x, which could allow context-dependent attackers to bypass authentication controls via unspecified vectors (e.g., potential is...