CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
22.9%
The function wordexp() fails to properly handle the WRDE_NOCMD flag when processing arithmetic inputs in the form of “$((… ``))” where “…” can be anything valid. The backticks in the arithmetic epxression are evaluated by in a shell even if WRDE_NOCMD forbade command substitution. This allows an attacker to attempt to pass dangerous commands via constructs of the above form, and bypass the WRDE_NOCMD flag. This update fixes the issue (CVE-2014-7817).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | glibc | < 2.17-7.6 | glibc-2.17-7.6.mga3 |
Mageia | 4 | noarch | glibc | < 2.18-9.5 | glibc-2.18-9.5.mga4 |