In HylaFAX+ through 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker could use this to escalate his privileges to root. Upstream Reference:

Created hylafax+ tracking bugs for this issue: Affects: epel-all [ ]….



Source link

You must be logged in to post a comment.