Unrated severityNVD Advisory· Published Dec 4, 2019· Updated Aug 5, 2024
CVE-2019-19519
CVE-2019-19519
Description
In OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding root) because there is a logic error in the main function in su/su.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenBSD/OpenBSDdescription
Patches
Vulnerability mechanics
References
7- packetstormsecurity.com/files/155572/Qualys-Security-Advisory-OpenBSD-Authentication-Bypass-Privilege-Escalation.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2019/Dec/14mitremailing-listx_refsource_FULLDISC
- www.openwall.com/lists/oss-security/2019/12/04/5mitremailing-listx_refsource_MLIST
- github.com/openbsd/src/blob/2dfc98f42e117c7605b52b5020b630d98601dc22/usr.bin/su/su.cmitrex_refsource_MISC
- seclists.org/bugtraq/2019/Dec/8mitremailing-listx_refsource_BUGTRAQ
- www.openbsd.org/errata66.htmlmitrex_refsource_MISC
- www.openwall.com/lists/oss-security/2019/12/04/5mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.