CVE-2016-7545
Description
SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.072
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Policycoreutils security update (CESA-2016:2702) policycoreutils-2.0.83-30.1.el6_8.i686.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-gui-2.0.83-30.1.el6_8.i686.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-gui-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-python-2.0.83-30.1.el6_8.i686.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-python-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-newrole-2.0.83-30.1.el6_8.i686.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-newrole-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-sandbox-2.0.83-30.1.el6_8.i686.rpm | Linux |
| Policycoreutils security update (CESA-2016:2702) policycoreutils-sandbox-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-2.0.83-30.1.el6_8.i686.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-gui-2.0.83-30.1.el6_8.i686.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-gui-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-newrole-2.0.83-30.1.el6_8.i686.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-newrole-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-python-2.0.83-30.1.el6_8.i686.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-python-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-sandbox-2.0.83-30.1.el6_8.i686.rpm | Linux |
| (RHSA-2016:2702) Important: policycoreutils security update policycoreutils-sandbox-2.0.83-30.1.el6_8.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-2.2.5-21.el7_2.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-devel-2.2.5-21.el7_2.i686.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-gui-2.2.5-21.el7_2.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-newrole-2.2.5-21.el7_2.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-python-2.2.5-21.el7_2.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-restorecond-2.2.5-21.el7_2.x86_64.rpm | Linux |
| (RHSA-2017:0535) Important: policycoreutils security update policycoreutils-sandbox-2.2.5-21.el7_2.x86_64.rpm | Linux |
| SUSE-SU-2017:0340-1(SUSE Linux Enterprise Server 12-SP1 ) policycoreutils-2.3-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:0340-1(SUSE Linux Enterprise Server 12-SP1 ) policycoreutils-debuginfo-2.3-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:0340-1(SUSE Linux Enterprise Server 12-SP1 ) policycoreutils-debugsource-2.3-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:0340-1(SUSE Linux Enterprise Server 12-SP1 ) policycoreutils-python-2.3-3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:0340-1(SUSE Linux Enterprise Server 12-SP1 ) policycoreutils-python-debuginfo-2.3-3.3.1.x86_64.rpm | Linux |
| Policycoreutils update (ELSA-2016-2702) policycoreutils-2.0.83-30.1.0.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils-gui update (ELSA-2016-2702) policycoreutils-gui-2.0.83-30.1.0.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils-newrole update (ELSA-2016-2702) policycoreutils-newrole-2.0.83-30.1.0.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils-python update (ELSA-2016-2702) policycoreutils-python-2.0.83-30.1.0.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils-sandbox update (ELSA-2016-2702) policycoreutils-sandbox-2.0.83-30.1.0.1.el6_8.x86_64.rpm | Linux |
| Policycoreutils update (ELSA-2016-2702) policycoreutils-2.0.83-30.1.0.1.el6_8.i686.rpm | Linux |
| Policycoreutils-gui update (ELSA-2016-2702) policycoreutils-gui-2.0.83-30.1.0.1.el6_8.i686.rpm | Linux |
| Policycoreutils-newrole update (ELSA-2016-2702) policycoreutils-newrole-2.0.83-30.1.0.1.el6_8.i686.rpm | Linux |
| Policycoreutils-python update (ELSA-2016-2702) policycoreutils-python-2.0.83-30.1.0.1.el6_8.i686.rpm | Linux |
| Policycoreutils-sandbox update (ELSA-2016-2702) policycoreutils-sandbox-2.0.83-30.1.0.1.el6_8.i686.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234