Kenneth Porter
2021-Jul-21 10:42 UTC
[CentOS] local privilege escalation in kernel and systemd
<https://www.bleepingcomputer.com/news/security/new-linux-kernel-bug-lets-you-get-root-on-most-modern-distros/> Two related bugs involve mounting a very long path. The kernel bug requires passing a 1 GB path string, while the systemd bug involves an 8 MB path that overflows its stack. Technical details here: <https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909> <https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/cve-2021-33910-denial-of-service-stack-exhaustion-in-systemd-pid-1>