Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-20181-0

Опубликовано: 25 нояб. 2025
Источник: oracle-oval
Платформа: Oracle Linux 10

Описание

ELSA-2025-20181-0: pam security update (IMPORTANT)

[1.6.1-8]

  • pam_namespace: fix potential privilege escalation. Resolves: CVE-2025-6020 and RHEL-101174

Обновленные пакеты

Oracle Linux 10

Oracle Linux aarch64

pam-devel

1.6.1-8.el10

pam

1.6.1-8.el10

pam-libs

1.6.1-8.el10

Oracle Linux x86_64

pam

1.6.1-8.el10

pam-libs

1.6.1-8.el10

pam-devel

1.6.1-8.el10

Связанные CVE

CVE-2025-6020

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2025-6020

CVSS3: 7.8
ubuntu
6 месяцев назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

redhat логотип

CVE-2025-6020

CVSS3: 7.8
redhat
6 месяцев назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

nvd логотип

CVE-2025-6020

CVSS3: 7.8
nvd
6 месяцев назад

A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.

msrc логотип

CVE-2025-6020

CVSS3: 7.8
msrc
5 месяцев назад

Linux-pam: linux-pam directory traversal

debian логотип

CVE-2025-6020

CVSS3: 7.8
debian
6 месяцев назад

A flaw was found in linux-pam. The module pam_namespace may use access ...