CVE-2016-8659

Опубликовано: 13 фев. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 6.9

CVSS3: 7

Описание

Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket.

Релиз	Статус	Примечание
devel	not-affected	0.1.6-2
esm-infra-legacy/trusty	DNE
precise	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	0.1.2-2
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	DNE
yakkety	released	0.1.5-1~ubuntu16.10.0

Показывать по

Ссылки на источники

6.9 Medium

CVSS2

7 High

CVSS3

Связанные уязвимости

CVE-2016-8659

CVSS3: 7

nvd

почти 9 лет назад

Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket.

CVE-2016-8659

CVSS3: 7

debian

почти 9 лет назад

Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might all ...

GHSA-q7w7-m7vg-xxg8

CVSS3: 7

github

больше 3 лет назад

Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket.

6.9 Medium

CVSS2

7 High

CVSS3

CVE-2016-8659

Описание

Пакет bubblewrap

Ссылки на источники

Связанные уязвимости