CVE-2016-7545

Опубликовано: 22 сент. 2016

Источник: redhat

CVSS3: 8.6

CVSS2: 6.8

EPSS Низкий

Описание

SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.

It was found that the sandbox tool provided in policycoreutils was vulnerable to a TIOCSTI ioctl attack. A specially crafted program executed via the sandbox command could use this flaw to execute arbitrary commands in the context of the parent shell, escaping the sandbox.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	policycoreutils	Not affected
Red Hat Enterprise Linux 6	policycoreutils	Fixed	RHSA-2016:2702	14.11.2016
Red Hat Enterprise Linux 7	policycoreutils	Fixed	RHSA-2016:2702	14.11.2016
Red Hat Enterprise Linux 7.1 Extended Update Support	policycoreutils	Fixed	RHSA-2017:0536	15.03.2017
Red Hat Enterprise Linux 7.2 Extended Update Support	policycoreutils	Fixed	RHSA-2017:0535	15.03.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=1378577policycoreutils: SELinux sandbox escape via TIOCSTI ioctl

EPSS

Процентиль: 10%

0.00036

Низкий

8.6 High

CVSS3

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2016-7545

CVSS3: 8.8

ubuntu

почти 9 лет назад

SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.

CVE-2016-7545

CVSS3: 8.8

nvd

почти 9 лет назад

SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.

CVE-2016-7545

CVSS3: 8.8

debian

почти 9 лет назад

SELinux policycoreutils allows local users to execute arbitrary comman ...

SUSE-SU-2017:0340-1

suse-cvrf

почти 9 лет назад

Security update for policycoreutils

SUSE-SU-2017:0339-1

suse-cvrf

почти 9 лет назад

Security update for policycoreutils

EPSS

Процентиль: 10%

0.00036

Низкий

8.6 High

CVSS3

6.8 Medium

CVSS2