Medium severity5.5NVD Advisory· Published Mar 19, 2018· Updated Jun 17, 2026
CVE-2017-18240
CVE-2017-18240
Description
The Gentoo app-admin/collectd package before 5.7.2-r1 sets the ownership of PID file directory to the collectd account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script sends a SIGKILL (when the service is stopped).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <5.7.2-r1
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/103469nvdThird Party AdvisoryVDB Entry
- bugs.gentoo.org/628540nvdIssue TrackingVendor Advisory
- security.gentoo.org/glsa/201803-10nvdVendor Advisory
News mentions
0No linked articles in our index yet.