Lucene search
GoogleOSV:ASB-A-200688826HistoryMar 01, 2022 - 12:00 a.m.
binder SELinux checks are racy wrt concurrent execve()
2022-03-0100:00:00
Google
osv.dev
5
In several functions of binder.c, there is a possible way to represent the wrong domain to SELinux due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
| CPE | Name | Operator | Version |
|---|---|---|---|
| :linux_kernel: | eq | Kernel |
Related
debiancve
debiancve
CVE-2021-39686
2022-03-16 15:15:10
nvd
nvd
CVE-2021-39686
2022-03-16 15:15:10
prion
prion
Race condition
2022-03-16 15:15:00
cvelist
cvelist
CVE-2021-39686
2022-03-16 14:04:08
redhatcve
redhatcve
CVE-2021-39686
2022-03-11 15:20:15
ubuntucve
ubuntucve
CVE-2021-39686
2022-03-16 00:00:00
cve
cve
CVE-2021-39686
2022-03-16 15:15:10
nessus
nessus
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-2257)
2022-08-17 00:00:00
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-2244)
2022-08-17 00:00:00
EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2022-2873)
2022-12-27 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2257)
2022-08-18 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2244)
2022-08-18 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2873)
2022-12-28 00:00:00
debian
debian
[SECURITY] [DLA 2940-1] linux security update
2022-03-09 12:40:13
[SECURITY] [DSA 5096-1] linux security update
2022-03-09 15:30:58
[SECURITY] [DLA 2941-1] linux-4.19 security update
2022-03-09 12:40:55
osv
osv
linux - security update
2022-03-09 00:00:00
linux-4.19 - security update
2022-03-09 00:00:00
linux - security update
2022-03-09 00:00:00
avleonov
avleonov