Milos Malik

**Name of the Vulnerable Software and Affected Versions** setroubleshoot versions prior to 3.2.23 **Description** The issue allows local users to execute arbitrary commands by triggering an execmod SELinux denial with a crafted binary filename. This is related to the `commands.getstatusoutput` function. **Recommendations** For versions prior to 3.2.23, update to version 3.2.23 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** setroubleshoot (affected versions not specified) **Description** The issue allows local users to execute arbitrary commands by triggering an execstack SELinux denial with a crafted filename. This is related to the `commands.getoutput` function. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.