A vulnerability in chkrootkit may allow local users to gain root privileges.
Package | app-forensics/chkrootkit on all architectures |
---|---|
Affected versions | < 0.50 |
Unaffected versions | >= 0.50 |
chkrootkit is a tool to locally check for signs of a rootkit.
When /tmp is mounted without the noexec option chkrootkit will execute files in /tmp with root privileges.
A local attacker could possibly execute arbitrary code with root privileges.
Users should mount /tmp with noexec option.
All chkrootkit users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-forensics/chkrootkit-0.50"
Release date
September 17, 2017
Latest revision
September 17, 2017: 1
Severity
high
Exploitable
local
Bugzilla entries