Security Advisory

CVE-2011-2910

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-11-15 16:37:29

Last updated 2024-08-06 23:15:31

Assigner redhat

State PUBLISHED

Description

The AX.25 daemon (ax25d) in ax25-tools before 0.0.8-13 does not check the return value of a setuid call. The setuid call is responsible for dropping privileges but if the call fails the daemon would continue to run with root privileges which can allow possible privilege escalation.

← Browse all CVEs View on cve.org ↗