Security Advisory

CVE-2016-8637

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-08-01 13:00:00

Last updated 2024-08-06 02:27:41

Assigner redhat

State PUBLISHED

Description

A local information disclosure issue was found in dracut before 045 when generating initramfs images with world-readable permissions when early cpio is used, such as when including microcode updates. Local attacker can use this to obtain sensitive information from these files, such as encryption keys or credentials.

← Browse all CVEs View on cve.org ↗