Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:19524
HistoryMay 16, 2019 - 3:18 a.m.

Privilege Escalation

2019-05-1603:18:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10

0.0004 Low

EPSS

Percentile

0.4%

Linux kernel is vulnerable to privilege escalation vulnerability. This exists in the function inode_init_owner of the file fs/inode.c. Local users could create files with an unintended group ownership and SGID permission bits set, when a directory is SGID and belongs to a certain group and is writable by an individual who is not in this group causing an excessive permission grant issue.

References