Описание
Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/noble | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | needs-triage | |
| oracular | not-affected | 0.0~20240729.0-4 |
| plucky | not-affected | |
| questing | not-affected | |
| upstream | released | 0.0~20240729.0-1 |
Показывать по
7.8 High
CVSS3
Связанные уязвимости
Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork.
Google gVisor's runsc component exhibited a local privilege escalation ...
Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork.
7.8 High
CVSS3