Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-6553

Опубликовано: 10 авг. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.6
CVSS3: 8.8

Описание

The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS.

РелизСтатусПримечание
artful

released

2.2.4-7ubuntu3.1
bionic

released

2.2.7-1ubuntu2.1
devel

released

2.2.7-1ubuntu3
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1.7.2-0ubuntu1.10]]
esm-infra/bionic

released

2.2.7-1ubuntu2.1
esm-infra/xenial

released

2.1.3-4ubuntu0.5
precise/esm

DNE

trusty

released

1.7.2-0ubuntu1.10
trusty/esm

DNE

trusty was released [1.7.2-0ubuntu1.10]
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 35%
0.00147
Низкий

4.6 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-6553

CVSS3: 7
redhat
больше 7 лет назад

The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS.

nvd логотип

CVE-2018-6553

CVSS3: 8.8
nvd
больше 7 лет назад

The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS.

debian логотип

CVE-2018-6553

CVSS3: 8.8
debian
больше 7 лет назад

The CUPS AppArmor profile incorrectly confined the dnssd backend due t ...

github логотип

GHSA-2f8v-v7q3-8gqv

CVSS3: 8.8
github
больше 3 лет назад

The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS.

EPSS

Процентиль: 35%
0.00147
Низкий

4.6 Medium

CVSS2

8.8 High

CVSS3