← back
CVE-2019-9893

CVE-2019-9893

EPSS 3.0%
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and potential privilege escalations.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00022.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-10/msg00027.htmlhttps://access.redhat.com/errata/RHSA-2019:3624https://github.com/seccomp/libseccomp/issues/139https://seclists.org/oss-sec/2019/q1/179https://security.gentoo.org/glsa/201904-18https://usn.ubuntu.com/4001-1/https://usn.ubuntu.com/4001-2/