← All advisories

High severity7.8NVD Advisory· Published Apr 14, 2017· Updated May 13, 2026

CVE-2016-6299

CVE-2016-6299

Description

The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5

Rpm Software Management/Mockinferred
Mock Project/Scm Plugin
cpe:2.3:a:mock_project:scm_plugin:-:*:*:*:*:mock:*:*
Fedoraproject/Fedora3 versions
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

6

www.openwall.com/lists/oss-security/2016/09/13/2nvdMailing ListPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdExploitIssue TrackingThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/92948nvdThird Party AdvisoryVDB Entry
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UFC4LU6GYYEVUK6LQ2FKUGMZXRTLLL5A/nvd
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VYLMPA5VLLX67DUJ6XLJ2TIW6CX2CFL4/nvd
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X5PH2YGYWYUAYPHK32SGUZGZXQEBEYNK/nvd

News mentions

0

No linked articles in our index yet.