Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
flower.initd in the Gentoo dev-python/flower package before 0.9.1-r1 for Celery Flower sets PID file ownership to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat /pathname`" command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Gentoo dev-python/flower包安全漏洞
Vulnerability Description
Gentoo dev-python/flower是Gentoo基金会的一个分布式任务队列实时监控和管理软件包。 Gentoo dev-python/flower包0.9.1-r1之前的版本中的flower.initd存在安全漏洞。本地攻击者可利用该漏洞造成拒绝服务(进程终止)。
CVSS Information
N/A
Vulnerability Type
N/A