CVE-2011-1548

logrotate - Local Privilege Escalation

Title source: llm

Description

The default configuration of logrotate on Debian GNU/Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as demonstrated by /var/log/postgresql/.

References (36)

... and 16 more

Scores

EPSS 0.0006
EPSS Percentile 18.1%

Classification

CWE
CWE-264
Status draft

Affected Products (1)

gentoo/logrotate

Timeline

Published Mar 30, 2011
Tracked Since Feb 18, 2026