QwikSec

Security Database

CVE

CWE

Training

CVE-2017-18078

Published: Jan 29, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

systemd-tmpfiles in systemd before 237 attempts to support ownership/permission changes on hardlinked files even if the fs.protected_hardlinks sysctl is turned off, which allows local users to bypass intended access restrictions via vectors involving a hard link to a file for which the user lacks write access, as demonstrated by changing the ownership of the /etc/passwd file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2018:0560

vendor-advisory

x_refsource_SUSE

[oss-security] 20180129 CVE-2018-18078: systemd-tmpfiles root privilege escalation with fs.protected_hardlinks=0

mailing-list

x_refsource_MLIST

exploit

x_refsource_EXPLOIT-DB

https://github.com/systemd/systemd/issues/7736

x_refsource_MISC

http://packetstormsecurity.com/files/146184/systemd-Local-Privilege-Escalation.html

x_refsource_MISC

[oss-security] 20180129 Re: CVE-2017-18078: systemd-tmpfiles root privilege

mailing-list

x_refsource_MLIST

[debian-lts-announce] 20190424 [SECURITY] [DLA 1762-1] systemd security update

mailing-list

x_refsource_MLIST

[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.