CVE-2016-7097 (linux_kernel)

Posted on 2016년 10월 17일2016년 10월 19일 by admin

The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions.

Source: CVE-2016-7097 (linux_kernel)

답글 남기기 응답 취소