CVE-2016-2568

Debian Bug report logs - #812512 policykit-1: CVE-2016-2568: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl Package: src:policykit-1; Maintainer for src:policykit-1 is Utopia Maintenance Team <pkg-utopia-maintainers@listsaliothdebianorg>; Reported by: up201407890@alunosdccfcup ...

Debian Bug report logs - #816320 coreutils: CVE-2016-2781: nonpriv session can escape to the parent session by using the TIOCSTI ioctl Package: src:coreutils; Maintainer for src:coreutils is Michael Stone <mstone@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 29 Feb 2016 19:48:01 UTC Se ...

Debian Bug report logs - #850702 CVE-2017-5226 -- bubblewrap escape Package: bubblewrap; Maintainer for bubblewrap is Utopia Maintenance Team <pkg-utopia-maintainers@listsaliothdebianorg>; Source for bubblewrap is src:bubblewrap (PTS, buildd, popcon) Reported by: up201407890@alunosdccfcuppt Date: Mon, 9 Jan 2017 13 ...

Debian Bug report logs - #838599 policycoreutils: CVE-2016-7545: SELinux sandbox escape via TIOCSTI ioctl Package: policycoreutils; Maintainer for policycoreutils is Debian SELinux maintainers <selinux-devel@listsaliothdebianorg>; Source for policycoreutils is src:policycoreutils (PTS, buildd, popcon) Reported by: up20140 ...

Debian Bug report logs - #815922 util-linux: CVE-2016-2779: runuser tty hijacking via TIOCSTI ioctl Package: util-linux; Maintainer for util-linux is LaMont Jones <lamont@debianorg>; Source for util-linux is src:util-linux (PTS, buildd, popcon) Reported by: up201407890@alunosdccfcuppt Date: Thu, 25 Feb 2016 18:54:02 U ...

It was found that pkexec was vulnerable to TIOCSTI ioctl attacks, allowing the executed program to push characters to its TTY's input buffer While being executed as a non-privileged user, a specially crafted program could force its parent TTY to enter commands, interpreted by the shell when pkexec exits ...