|
|
Subscribe / Log in / New account

libuv: privilege escalation

Package(s):libuv CVE #(s):CVE-2015-0278
Created:March 2, 2015 Updated:November 17, 2016
Description: From the Red Hat bugzilla:

It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges.

Alerts:
Gentoo 201611-10 libuv 2016-11-17
Mandriva MDVSA-2015:228 nodejs 2015-05-06
Mageia MGASA-2015-0186 nodejs 2015-05-05
Fedora FEDORA-2015-2313 v8 2015-02-28
Fedora FEDORA-2015-2313 nodejs 2015-02-28
Fedora FEDORA-2015-2313 libuv 2015-02-28
Fedora FEDORA-2015-2310 v8 2015-03-13
Fedora FEDORA-2015-2310 nodejs 2015-03-13
Fedora FEDORA-2015-2310 libuv 2015-03-13
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds