QwikSec

Security Database

CVE

CWE

Training

CVE-2022-41973

Published: Oct 29, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited in conjunction with CVE-2022-41974. Local users able to access /dev/shm can change symlinks in multipathd due to incorrect symlink handling, which could lead to controlled file writes outside of the /dev/shm directory. This could be used indirectly for local privilege escalation to root.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.suse.com/show_bug.cgi?id=1202739

https://github.com/opensvc/multipath-tools/releases/tag/0.9.2

http://www.openwall.com/lists/oss-security/2022/10/24/2

20221030 Authorization bypass and symlink attack in multipathd (CVE-2022-41974 and CVE-2022-41973)

mailing-list

http://packetstormsecurity.com/files/169611/Leeloo-Multipath-Authorization-Bypass-Symlink-Attack.html

FEDORA-2022-6ec78b2586

vendor-advisory

https://www.qualys.com/2022/10/24/leeloo-multipath/leeloo-multipath.txt

[oss-security] 20221130 Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328)

mailing-list

20221208 Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328)

mailing-list

http://packetstormsecurity.com/files/170176/snap-confine-must_mkdir_and_open_with_perms-Race-Condition.html

[debian-lts-announce] 20221229 [SECURITY] [DLA 3250-1] multipath-tools security update

mailing-list

vendor-advisory

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.