Unrated severityNVD Advisory· Published Nov 15, 2019· Updated Aug 6, 2024

CVE-2011-2910

Description

The AX.25 daemon (ax25d) in ax25-tools before 0.0.8-13 does not check the return value of a setuid call. The setuid call is responsible for dropping privileges but if the call fails the daemon would continue to run with root privileges which can allow possible privilege escalation.

Affected products

Ax25 Tools/Ax25 Toolsv5
Range: before 0.0.8-13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

access.redhat.com/security/cve/cve-2011-2910mitrex_refsource_MISC
bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
security-tracker.debian.org/tracker/CVE-2011-2910mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000