漏洞标题
N/A
漏洞描述信息
在 FreeBSD 13.0-STABLE 之前,n245118,12.2-STABLE 之前,r369552,11.4-STABLE 之前,r369560,13.0-RC5 之前,12.2-RELEASE 之前,和 11.4-RELEASE 之前,配置了非默认的 allow.mount 权限的 FreeBSD jail 中的超级用户可能在查找“..” 和重新挂载文件系统之间引发竞争条件,允许从 jail 外部访问文件系统层次结构。
CVSS信息
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jail configured with the non-default allow.mount permission could cause a race condition between the lookup of ".." and remounting a filesystem, allowing access to filesystem hierarchy outside of the jail.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Freebsd FreeBSD 竞争条件问题漏洞
漏洞描述信息
FreeBSD是Freebsd基金会的一套类Unix操作系统。 FreeBSD 存在安全漏洞,该漏洞允许访问文件系统层次结构。以下产品及版本受到影响:FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9。
CVSS信息
N/A
漏洞类别
竞争条件问题