CVE-2017-20148

Description

In the ebuild package through logcheck-1.3.23.ebuild for Logcheck on Gentoo, it is possible to achieve root privilege escalation from the logcheck user because of insecure recursive chown calls.

Related CPE's

a debian logcheck ********

References

https://bugs.gentoo.org/630752

ExploitIssue TrackingPatchThird Party Advisory

GLSA-202209-10

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io