Search the Community
Showing results for tags 'systemd'.
-
Exploits systemd DynamicUser SetUID Binary Creation
1337day-Exploits posted a topic in Updated Exploits
This bug report describes a bug in systemd that allows a service with DynamicUser in collaboration with another service or user to create a setuid binary that can be used to access its UID beyond the lifetime of the service. This bug probably has relatively low severity, given that there are not many services yet that use DynamicUser, and the requirement of collaboration with another process limits the circumstances in which it would be useful to an attacker further; but in a system that makes heavy use of DynamicUser, it would probably have impact. View the full article-
- systemd
- dynamicuser
-
(and 3 more)
Tagged with:
-
Linux has an issue with systemd where overlong input to fgets() during reexec state injection can lead to line splitting. View the full article