← back
CVE-2007-0536

CVE-2007-0536

EPSS 0.4%
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.rpath.com/pipermail/security-announce/2007-January/000137.htmlhttp://osvdb.org/32972http://secunia.com/advisories/23922https://exchange.xforce.ibmcloud.com/vulnerabilities/31942https://issues.rpath.com/browse/RPL-987