Red Hat Enterprise Linux for Real Time TUS 8.8

CPE Details

Red Hat Enterprise Linux for Real Time TUS 8.8
redhat
enterprise_linux_for_real_time_tus
8.8
2024-12-13
17h47 +00:00
2024-12-13
17h47 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.8:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

enterprise_linux_for_real_time_tus

Version

8.8

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-13272 2019-07-17 12h32 +00:00 In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.
7.8
High