Medium severity5.5OSV Advisory· Published Feb 14, 2018· Updated Jun 17, 2026
CVE-2017-18188
CVE-2017-18188
Description
OpenRC opentmpfiles through 0.1.3, when the fs.protected_hardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20.1, 0.1.1, 0.1.2, …+ 1 more
- (no CPE)range: 0.1, 0.1.1, 0.1.2, …
- (no CPE)range: <=0.1.3
Patches
Vulnerability mechanics
References
1- github.com/OpenRC/opentmpfiles/issues/3nvdThird Party Advisory
News mentions
0No linked articles in our index yet.