Описание
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.4.1-0ubuntu0.18.04.2 |
| cosmic | released | 2.4.1-0ubuntu0.18.10.3 |
| devel | released | 2.4.1-0ubuntu0.19.10.3 |
| disco | released | 2.4.1-0ubuntu0.19.04.3 |
| esm-infra-legacy/trusty | not-affected | 2.4.1-0ubuntu0.14.04.2 |
| esm-infra/bionic | not-affected | 2.4.1-0ubuntu0.18.04.2 |
| esm-infra/xenial | not-affected | 2.4.1-0ubuntu0.16.04.2 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | released | 2.4.1-0ubuntu0.14.04.2 |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argu ...
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3