Security Advisory

CVE-2011-3151

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-22 15:35:58

Last updated 2024-09-16 22:26:42

Assigner mitre

State PUBLISHED

Description

The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world-writable directory. If the OS kernel does not have symlink protections then an attacker can cause a zero byte file to be allocated on any writable filesystem.

← Browse all CVEs View on cve.org ↗