CVE-2014-0470

EPSS 0.04%

super - security update

發布日:2014/4/30修改日:2026/3/9

也稱為:DSA-2917-1DEBIAN-CVE-2014-0470

描述

super.c in Super 3.30.0 does not check the return value of the setuid function when the -F flag is set, which allows local users to gain privileges via unspecified vectors, aka an RLIMIT_NPROC attack.

受影響套件(2)

Debian/superfrom 0, < 3.30.0-7
Debian/superfrom 0, < 3.30.0-3+squeeze2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-0470