Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-44038HistoryNov 19, 2021 - 7:15 p.m.
CVE-2021-44038
2021-11-1919:15:00
Alpine Linux Development Team
security.alpinelinux.org
10
quagga
chown/chmod
privilege escalation
package installation
unix
EPSS
0
Percentile
5.1%
An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users (with control of the non-root-owned directory /etc/quagga) to escalate their privileges to root upon package installation or update.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | quagga | = 1.2.4-r5 | UNKNOWN |
| Alpine | 3.14-main | noarch | quagga | = 1.2.4-r5 | UNKNOWN |
| Alpine | 3.13-main | noarch | quagga | = 1.2.4-r5 | UNKNOWN |
| Alpine | 3.12-main | noarch | quagga | = 1.2.4-r3 | UNKNOWN |
| Alpine | 3.11-main | noarch | quagga | = 1.2.4-r3 | UNKNOWN |
| Alpine | 3.15-main | noarch | quagga | = 1.2.4-r5 | UNKNOWN |
| Alpine | 3.16-main | noarch | quagga | = 1.2.4-r5 | UNKNOWN |
Related
osv
osv
CVE-2021-44038
2021-11-19 19:15:09
libfpm_pb0-1.2.4-5.1 on GA media
2024-06-15 00:00:00
prion
prion
Design/Logic Flaw
2021-11-19 19:15:00
debiancve
debiancve
CVE-2021-44038
2021-11-19 19:15:09
openvas
openvas
Quagga <= 1.2.4 Privilege Escalation Vulnerability
2021-11-22 00:00:00
cvelist
cvelist
CVE-2021-44038
2021-11-19 18:29:55
redhatcve
redhatcve
CVE-2021-44038
2021-11-23 12:01:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-44038
2022-01-25 12:06:35
ubuntucve
ubuntucve
CVE-2021-44038
2021-11-19 00:00:00
nvd
nvd
CVE-2021-44038
2021-11-19 19:15:09
cbl_mariner
cbl_mariner
CVE-2021-44038 affecting package quagga 1.2.4-15
2024-10-02 03:32:48
cve
cve
CVE-2021-44038
2021-11-19 19:15:09
nessus
nessus
RHEL 6 : quagga (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : quagga (Unpatched Vulnerability)
2024-05-11 00:00:00