[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS2-2018-1076 --- policycoreutils

ID: oval:org.secpod.oval:def:1700078Date: (C)2018-09-19   (M)2023-12-20
Class: PATCHFamily: unix




Context relabeling of filesystems is vulnerable to symbolic link attack, allowing a local, unprivileged malicious entity to change the SELinux context of an arbitrary file to a context with few restrictions. This only happens when the relabeling process is done, usually when taking SELinux state from disabled to enable .

Platform:
Amazon Linux 2
Product:
policycoreutils
Reference:
ALAS2-2018-1076
CVE-2018-1063
CVE    1
CVE-2018-1063
CPE    2
cpe:/o:amazon:linux:2
cpe:/a:redhat:policycoreutils

© SecPod Technologies