rpm package
suse/policycoreutils&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2
pkg:rpm/suse/policycoreutils&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-1063 | Med | 4.4 | < 2.5-10.3.1 | 2.5-10.3.1 | Mar 2, 2018 | Context relabeling of filesystems is vulnerable to symbolic link attack, allowing a local, unprivileged malicious entity to change the SELinux context of an arbitrary file to a context with few restrictions. This only happens when the relabeling process is done, usually when taki | |
| CVE-2016-7545 | Hig | 8.8 | < 2.5-6.1 | 2.5-6.1 | Jan 19, 2017 | SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call. |
- affected < 2.5-10.3.1fixed 2.5-10.3.1
Context relabeling of filesystems is vulnerable to symbolic link attack, allowing a local, unprivileged malicious entity to change the SELinux context of an arbitrary file to a context with few restrictions. This only happens when the relabeling process is done, usually when taki
- affected < 2.5-6.1fixed 2.5-6.1
SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.