Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): cpe:2.3:a:iproute2_project:iproute2:3.0.0:*:*:*:*:*:*:*
  • CPE Name Search: true
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

iproute2 before 5.1.0 has a use-after-free in get_netnsid_from_name in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors (such as C library configuration) may block exploitability.

Published: May 09, 2020; 5:15:10 PM -0400
V3.1: 4.4 MEDIUM
V2.0: 2.1 LOW

iproute2 before 3.3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file used by (1) configure or (2) examples/dhcp-client-script.

Published: February 15, 2014; 9:57:07 AM -0500
V3.x:(not available)
V2.0: 3.3 LOW