A flaw was found in Keylime prior to 6.3.0. The logic in the Keylime agent for checking for a secure mount can be fooled by previously created unprivileged mounts allowing secrets to be leaked to other processes on the host.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
keylime keylime |