Lucene search
FreeBSDA431676C-F86C-4371-B48A-B7D2B0BEC3A3HistoryMay 15, 2024 - 12:00 a.m.
electron29 -- setuid() does not affect libuv's internal io_uring
2024-05-1500:00:00
vuxml.freebsd.org
1
electron
update
vulnerability
cve-2024-22017
unix
7.3 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Electron developers report:
This update fixes the following vulnerability:
Backported fix for CVE-2024-22017.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | electron29 | < 29.4.0 | UNKNOWN |
Related
cvelist
cvelist
CVE-2024-22017
2024-03-19 04:32:34
nessus
nessus
FreeBSD : electron29 -- setuid() does not affect libuv's internal io_uring (a431676c-f86c-4371-b48a-b7d2b0bec3a3)
2024-05-18 00:00:00
CBL Mariner 2.0 Security Update: nodejs18 / nodejs / libuv (CVE-2024-22017)
2024-07-02 00:00:00
AlmaLinux 8 : nodejs:20 (ALSA-2024:1687)
2024-04-10 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-22017 affecting package nodejs for versions less than 20.14.0-1
2024-06-21 09:32:44
CVE-2024-22017 affecting package libuv for versions less than 1.48.0-1
2024-05-31 18:55:08
f5
f5
K000139573: node.js vulnerability CVE-2024-22017
2024-05-10 00:00:00
nvd
nvd
CVE-2024-22017
2024-03-19 05:15:10
hackerone
hackerone
Node.js: setuid() does not drop all privileges due to io_uring
2023-09-18 13:55:49
cve
cve
CVE-2024-22017
2024-03-19 05:15:10
ubuntucve
ubuntucve
CVE-2024-22017
2024-03-19 00:00:00
debiancve
debiancve
CVE-2024-22017
2024-03-19 05:15:10
redhatcve
redhatcve
CVE-2024-22017
2024-02-23 20:01:35
oraclelinux
oraclelinux
nodejs:20 security update
2024-04-08 00:00:00
nodejs:20 security update
2024-04-08 00:00:00
almalinux
almalinux
Important: nodejs:20 security update
2024-04-08 00:00:00
Important: nodejs:20 security update
2024-04-08 00:00:00
osv
osv
Important: nodejs:20 security update
2024-05-06 13:04:21
Important: nodejs:20 security update
2024-04-08 00:00:00
Important: nodejs:20 security update
2024-04-08 00:00:00
rocky
rocky
nodejs:20 security update
2024-05-06 13:04:21
nodejs:20 security update
2024-05-06 13:05:29
redhat
redhat
(RHSA-2024:1688) Important: nodejs:20 security update
2024-04-08 08:32:51
(RHSA-2024:1687) Important: nodejs:20 security update
2024-04-08 08:32:43
ibm
ibm
freebsd
freebsd
NodeJS -- Vulnerabilities
2024-02-14 00:00:00
nodejsblog
nodejsblog
Wednesday February 14 2024 Security Releases
2024-02-14 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2024-5.0-0213
2024-02-20 00:00:00
openvas
openvas
Node.js 20.x < 20.11.1, 21.x < 21.6.2 Multiple Vulnerabilities - Windows
2024-02-16 00:00:00
Node.js 20.x < 20.11.1, 21.x < 21.6.2 Multiple Vulnerabilities - Mac OS X
2024-02-16 00:00:00
7.3 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Related for A431676C-F86C-4371-B48A-B7D2B0BEC3A3