Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-10357

Опубликовано: 02 сент. 2025
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2025-10357: pam security update (IMPORTANT)

[1.1.8-23.0.3]

  • pam_namespace: fix potential privilege escalation CVE-2025-6020 [Orabug: 38156729]

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

pam

1.1.8-23.0.3.el7

pam-devel

1.1.8-23.0.3.el7

Связанные CVE

CVE-2025-6020

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2025-6020

CVSS3: 7.8
ubuntu
4 месяца назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

redhat логотип

CVE-2025-6020

CVSS3: 7.8
redhat
4 месяца назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

nvd логотип

CVE-2025-6020

CVSS3: 7.8
nvd
4 месяца назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

msrc логотип

CVE-2025-6020

CVSS3: 7.8
msrc
3 месяца назад

Описание отсутствует

debian логотип

CVE-2025-6020

CVSS3: 7.8
debian
4 месяца назад

A flaw was found in linux-pam. The module pam_namespace may use access ...