Description
The service daemon in CRIU creates log and dump files insecurely, which allows local users to create arbitrary files and take ownership of existing files via unspecified vectors related to a directory path.
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/08/25/5
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-09/msg00030.html
Vendor Advisory mailing-list
x_refsource_mlist
https://lists.openvz.org/pipermail/criu/2015-August/021847.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1255782
Scores
CVSS v3
7.8
EPSS
0.0005
EPSS Percentile
15.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-264
Status
published
Products (2)
criu/checkpoint\/restore_in_userspace
opensuse/opensuse
13.2
Published
Jun 07, 2016
Tracked Since
Feb 18, 2026