rpm package
opensuse/criu&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/criu&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-5231 | Med | 5.5 | < 2.9-1.1 | 2.9-1.1 | Jun 7, 2016 | The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access. | |
| CVE-2015-5228 | Hig | 7.8 | < 2.9-1.1 | 2.9-1.1 | Jun 7, 2016 | The service daemon in CRIU creates log and dump files insecurely, which allows local users to create arbitrary files and take ownership of existing files via unspecified vectors related to a directory path. |
- affected < 2.9-1.1fixed 2.9-1.1
The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.
- affected < 2.9-1.1fixed 2.9-1.1
The service daemon in CRIU creates log and dump files insecurely, which allows local users to create arbitrary files and take ownership of existing files via unspecified vectors related to a directory path.