Описание
incron 0.5.5 does not initialize supplementary groups when running a process from a user's incrontabs, which causes the process to be run with the incrond supplementary groups and allows local users to gain privileges via an incrontab table.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 0.5.7-1 |
| hardy | not-affected | 0.5.7-1 |
| intrepid | ignored | end of life |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | 0.5.7-1 |
| maverick | not-affected | 0.5.7-1 |
| natty | not-affected | 0.5.7-1 |
| upstream | needs-triage |
Показывать по
EPSS
4.6 Medium
CVSS2
Связанные уязвимости
incron 0.5.5 does not initialize supplementary groups when running a process from a user's incrontabs, which causes the process to be run with the incrond supplementary groups and allows local users to gain privileges via an incrontab table.
incron 0.5.5 does not initialize supplementary groups when running a p ...
incron 0.5.5 does not initialize supplementary groups when running a process from a user's incrontabs, which causes the process to be run with the incrond supplementary groups and allows local users to gain privileges via an incrontab table.
EPSS
4.6 Medium
CVSS2