CVE-2017-18367 -- golang-github-seccomp-libseccomp-golang-devID: oval:org.secpod.oval:def:1902015 | Date: (C)2019-06-07 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument.
Platform: |
Ubuntu 16.04 |
Ubuntu 18.10 |
Ubuntu 18.04 |
Ubuntu 19.04 |
Product: |
golang-github-seccomp-libseccomp-golang-dev |