CVE-2016-2781

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-2781

Severity

Unknown

Description

chroot in GNU coreutils, when used with --userspec, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.

References

https://images.chainguard.dev/security/CGA-758j-cqx5-pjx9
https://github.com/advisories/GHSA-vf3q-65gx-324p
http://www.openwall.com/lists/oss-security/2016/02/28/2
http://www.openwall.com/lists/oss-security/2016/02/28/3
https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E
https://security-tracker.debian.org/tracker/CVE-2016-2781

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2016-2781

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources