Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-41387 - log back

CVE-2021-41387 edited at 18 Sep 2021 11:20:20

Severity

-	Unknown
+	High

Remote

-	Unknown
+	Local

Type

-	Unknown
+	Privilege escalation

Description

+	seatd-launch in seatd 0.6.x before 0.6.2 allows privilege escalation because it uses execlp and may be installed as setuid root.

References

+	https://lists.sr.ht/~kennylevinsen/seatd-announce/%3CGJ2IZQ.HCKS1J0LSI803%40kl.wtf%3E
+	https://git.sr.ht/~kennylevinsen/seatd/commit/907b75de1ae5ec415a99889faecaf05b36bea31e

Notes

CVE-2021-41387 created at 18 Sep 2021 11:14:20