Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The open_by_handle_at function in vzkernel before 042stab090.5 in the OpenVZ modification for the Linux kernel 2.6.32, when using simfs, might allow local container users with CAP_DAC_READ_SEARCH capability to bypass an intended container protection mechanism and access arbitrary files on a filesystem via vectors related to use of the file_handle structure.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel OpenVZ modification vzkernel 安全漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的操作系统Linux所使用的内核。OpenVZ modification是其中的一个基于Linux内核的操作系统级虚拟化技术,也被称为虚拟专用服务器(VPS)或虚拟环境(VE)。vzkernel是其中的一个OpenVZ核心包。 Linux kernel 2.6.32版本中的OpenVZ modification的vzkernel 042stab090.5之前版本的‘open_by_handle_at’函数存在安全漏洞。本地攻击者可利用该漏洞绕过容器保护机制
CVSS Information
N/A
Vulnerability Type
N/A