Login
Roast topics
Find topics
Find it!
From:
SUSE Security Team Blog
(Uncensored)
subscribe
Performance Co-Pilot (pcp): Unsafe use of Directories in /var/lib/pcp and /var/log/pcp breaks pcp Service User Isolation (CVE-2023-6917) | SUSE Security Team...
https://security.opensuse.org/2024/02/27/pcp-user-to-root-exploit.html
links
backlinks
Roast topics
Find topics
Roast it!
The pcp performance analysis toolkit operates as root in directories controlled by the pcp service user, which allows to escalate privileges from pcp user to root.