N/A

It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run as the transient service UID/GID even after the service is terminated. A local attacker may use this flaw to access resources that will be owned by a potentially different service in the future, when the UID/GID will be recycled.

N/A

特权授予不正确

systemd 权限许可和访问控制问题漏洞

systemd是德国Lennart Poettering软件开发者的一款基于Linux的系统和服务管理器。该产品兼容了SysV和LSB的启动脚本，且提供了一个用来表示系统服务间依赖关系的框架。 systemd中存在安全漏洞。本地攻击者可利用该漏洞访问其他服务的资源。

N/A

N/A