Published: 24/04/2019 Updated: 14/10/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

libseccomp-golang 0.9.0 and previous versions incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libseccomp-golang project libseccomp-golang

Debian Bug report logs - #927981 golang-github-seccomp-libseccomp-golang: CVE-2017-18367 Package: src:golang-github-seccomp-libseccomp-golang; Maintainer for src:golang-github-seccomp-libseccomp-golang is Debian Go Packaging Team <pkg-go-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debian ...

Synopsis Moderate: OpenShift Container Platform 41 openshift security update Type/Severity Security Advisory: Moderate Topic An update for openshift is now available for Red Hat OpenShift Container Platform 41Red Hat Product Security has rated this update as having a security impact of Moderate A Common ...

Synopsis Moderate: OpenShift Container Platform 41 libseccomp-golang security update Type/Severity Security Advisory: Moderate Topic An update for openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshift-enterprise-hypershift-container, openshift-enterprise-node-container, an ...

Impact: Moderate Public Date: 2019-04-24 CWE: CWE-305 Bugzilla: 1706826: CVE-2017-18367 libseccomp-gola ...

oss-sec mailing list archives   By Date By Thread </form>    Re: CVE Request: golang-seccomp incorrectly handles multiple syscall arguments  <!--X-Head-of-Messa ...

CWE-20 https://github.com/seccomp/libseccomp-golang/issues/22 https://github.com/seccomp/libseccomp-golang/commit/06e7a29f36a34b8cf419aeb87b979ee508e58f9e http://www.openwall.com/lists/oss-security/2019/04/25/6 https://access.redhat.com/errata/RHSA-2019:4087 https://access.redhat.com/errata/RHSA-2019:4090 https://lists.debian.org/debian-lts-announce/2020/08/msg00016.html https://usn.ubuntu.com/4574-1/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927981 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-18367

CVE-2017-18367

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect