Security Advisory

CVE-2017-18367

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-24 20:02:19

Last updated 2024-08-05 21:20:50

Assigner mitre

State PUBLISHED

Description

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument.

← Browse all CVEs View on cve.org ↗