Описание
please (aka pleaser) through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. (If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited.)
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| rust-pleaser | unfixed | package | ||
| rust-pleaser | ignored | trixie | package | |
| rust-pleaser | ignored | bookworm | package | |
| rust-pleaser | no-dsa | bullseye | package |
Примечания
https://gitlab.com/edneville/please/-/issues/13
https://rustsec.org/advisories/RUSTSEC-2023-0066.html
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 2 лет назад
please (aka pleaser) through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. (If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited.)
CVSS3: 7.8
nvd
больше 2 лет назад
please (aka pleaser) through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. (If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited.)
