Описание
xlock in OpenBSD 6.6 allows local users to gain the privileges of the auth group by providing a LIBGL_DRIVERS_PATH environment variable, because xenocara/lib/mesa/src/loader/loader.c mishandles dlopen.
Ссылки
- Third Party Advisory
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Mailing List
- ExploitMailing ListThird Party Advisory
- Vendor Advisory
- ExploitMailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Mailing List
- ExploitMailing ListThird Party Advisory
- Vendor Advisory
- ExploitMailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:openbsd:openbsd:6.6:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02229
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-863
Связанные уязвимости
github
больше 3 лет назад
xlock in OpenBSD 6.6 allows local users to gain the privileges of the auth group by providing a LIBGL_DRIVERS_PATH environment variable, because xenocara/lib/mesa/src/loader/loader.c mishandles dlopen.
EPSS
Процентиль: 84%
0.02229
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-863