漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
The generic_file_splice_write function in fs/splice.c in the Linux kernel before 2.6.19 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by splicing into an inode in order to create an executable file in a setgid directory, a different vulnerability than CVE-2008-4210.
漏洞信息
N/A
漏洞
N/A
漏洞
Linux Kernel 'generic_file_splice_write()' 'fs/splice.c' 本地特权升级漏洞
漏洞信息
Linux kernel的fs/splice.c中的generic_file_splice_write函数在写入一个文件时不合理的清除setuid和setgid位,允许本地用户通过接入一个索引节点在setgid目录中创建可执行文件,获得不同组的权限,敏感信息或可能具有其他未明影响。
漏洞信息
N/A
漏洞
N/A