CVE-2011-1006
EPSS 0.13%libcgroup - several
發布日:2011/3/22修改日:2026/3/9
描述
Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privileges via a crafted controller list on the command line of an application. NOTE: it is not clear whether this issue crosses privilege boundaries.
受影響套件(2)
- Debian/libcgroupfrom 0, < 0.37.1-1
- Debian/libcgroupfrom 0, < 0.36.2-3+squeeze1