CVE-2016-5759

Опубликовано: 22 июл. 2016

Источник: redhat

CVSS3: 7.3

Описание

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root.

This issue did not affect the versions of kexec-tools as shipped with Red Hat Enterprise Linux 5, 6, and 7.

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kexec-tools	Not affected
Red Hat Enterprise Linux 6	kexec-tools	Not affected
Red Hat Enterprise Linux 7	kexec-tools	Not affected

Показывать по

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1510921kexec-tools: mkdumprd script called "dracut" in the current working directory

7.3 High

CVSS3

CVE-2016-5759

CVSS3: 7.8

nvd

больше 8 лет назад

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root.

openSUSE-SU-2016:2605-1

suse-cvrf

больше 9 лет назад

Security update for kdump

SUSE-SU-2016:2553-1

suse-cvrf

больше 9 лет назад

Security update for kdump

GHSA-wp6g-h882-vcw2

CVSS3: 7.8

github

больше 3 лет назад

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root.

7.3 High

CVSS3