CVE-2015-3339
CVSS v2.0
6.2 (Medium)
EPSS
0.04 % (11th)
Affected Products
2
Advisories
36
Race condition in the prepare_binprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root is in progress, and the ownership is changed but the setuid bit is not yet stripped.
Weaknesses
- CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2015-05-27 10:59:11
(9 years ago) - Updated Date
-
2023-11-07 02:25:36
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...