CVE-2016-4446

Metadata

CVE-2016-4446
6.9
seclists.org, securityfocus.com, securitytracker.com, access.redhat.com, bugzilla.redhat.com, github.com, rhn.redhat.com
2017-04-11
2017-06-08 14:17

Description

The allow_execstack plugin for setroubleshoot allows local users to execute arbitrary commands by triggering an execstack SELinux denial with a crafted filename, related to the commands.getoutput function.

Related Vulnerabilities