CVE-2011-1784

Name of the Vulnerable Software and Affected Versions keepalived versions 1.2.2 and earlier

Description The issue allows local users to kill arbitrary processes by writing a PID to certain files. This is due to the pidfile write function using 0666 permissions for the keepalived.pid, checkers.pid, and vrrp.pid files in /var/run/.

Recommendations For keepalived versions 1.2.2 and earlier, consider changing the permissions of the keepalived.pid, checkers.pid, and vrrp.pid files to prevent local users from modifying them. As a temporary workaround, restrict access to these files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.