CVE-2019-11675

Name of the Vulnerable Software and Affected Versions groonga-httpd version 6.1.5-1

Description The issue is related to the Debian packaging of the Groonga HTTP server, where the ownership of /var/log/groonga is set to the groonga account. This might allow local users to obtain root access due to unsafe interaction with logrotate. An example exploitation method involves a race condition to insert a symlink from /var/log/groonga/httpd to /etc/bash completion.d.

Recommendations For groonga-httpd version 6.1.5-1, consider changing the ownership of /var/log/groonga to a more secure setting to prevent local users from obtaining root access. As a temporary workaround, restrict access to the logrotate configuration to minimize the risk of exploitation.