GHSA-h5q3-ggp6-vf4c

Опубликовано: 17 мар. 2026

Источник: github

Github: Не прошло ревью

Описание

In the Linux kernel, the following vulnerability has been resolved:

audit: add fchmodat2() to change attributes class

fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a file attribute in the same fashion than chmod() or fchmodat() will bypass audit rules such as:

-w /tmp/test -p rwa -k test_rwa

The current patch adds fchmodat2() to the change attributes class.

In the Linux kernel, the following vulnerability has been resolved:

audit: add fchmodat2() to change attributes class

-w /tmp/test -p rwa -k test_rwa

The current patch adds fchmodat2() to the change attributes class.

Ссылки

EPSS

Процентиль: 9%

0.00032

Низкий

CVE ID

CVE-2025-71239

Связанные уязвимости

CVE-2025-71239

ubuntu

12 дней назад

[audit: add fchmodat2() to change attributes class]

CVE-2025-71239

CVSS3: 5.1

redhat

12 дней назад

No description is available for this CVE.

CVE-2025-71239

nvd

12 дней назад

In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a file attribute in the same fashion than chmod() or fchmodat() will bypass audit rules such as: -w /tmp/test -p rwa -k test_rwa The current patch adds fchmodat2() to the change attributes class.

CVE-2025-71239

CVSS3: 5.5

msrc

11 дней назад

audit: add fchmodat2() to change attributes class

CVE-2025-71239

debian

12 дней назад

In the Linux kernel, the following vulnerability has been resolved: a ...

EPSS

Процентиль: 9%

0.00032

Низкий

CVE ID

CVE-2025-71239