漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RPM 'lib/fsm.c'可执行文件权限许可和访问控制问题漏洞
Vulnerability Description
RPM软件包升级对文件进行替换时,RPM的lib/fsm.c没有正确的重置可执行文件的元数据,本地用户可以通过创建易受攻击的(1)setuid或(2)setgid文件的hard链接,获取权限。
CVSS Information
N/A
Vulnerability Type
N/A