VDB

GCVE-110-MAGEIA-2020-341

GCVE-110-MAGEIA-2020-341
Advisory Published
Vulnetix · Advisory published August 22, 2020
Chrony's method of opening its PID file could allow a compromised chrony user account to overwrite files in certain parts of the filesystem with chrony's PID, using a symlink attack (CVE-2020-14367).

Affected Products

VendorProductVersionsPlatforms
Mageiachrony0 (affected), 3.4-2.1.mga7 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›