VYPR
Medium severity5.5OSV Advisory· Published Feb 14, 2018· Updated Jun 17, 2026

CVE-2017-18188

CVE-2017-18188

Description

OpenRC opentmpfiles through 0.1.3, when the fs.protected_hardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Openrc/OpentmpfilesOSV2 versions
    0.1, 0.1.1, 0.1.2, …+ 1 more
    • (no CPE)range: 0.1, 0.1.1, 0.1.2, …
    • (no CPE)range: <=0.1.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.