Описание
super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMIT_NPROC attack.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.30.0-7 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [3.30.0-6+deb7u1build0.14.04.1]] |
| lucid | ignored | end of life |
| precise | released | 3.30.0-6+deb7u1build0.12.04.1 |
| quantal | ignored | end of life |
| saucy | ignored | end of life |
| trusty | released | 3.30.0-6+deb7u1build0.14.04.1 |
| trusty/esm | DNE | trusty was released [3.30.0-6+deb7u1build0.14.04.1] |
| upstream | released | 3.30.0-7 |
| utopic | not-affected | 3.30.0-7 |
Показывать по
Ссылки на источники
7.2 High
CVSS2
Связанные уязвимости
super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMIT_NPROC attack.
super.c in Super 3.30.0 does not check the return value of the setuid ...
super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMIT_NPROC attack.
7.2 High
CVSS2