CVE-2019-12575

Name of the Vulnerable Software and Affected Versions London Trust Media Private Internet Access (PIA) VPN Client version v82 for Linux

Description A local, authenticated attacker could exploit this issue to run arbitrary code with elevated privileges. The root runner.64 binary, which is setuid root, executes /opt/pia/ruby/64/ruby, loading several libraries under /tmp/ruby-deploy.old/lib. An unprivileged user can create a malicious library under this path to execute arbitrary code as the root user.

Recommendations For London Trust Media Private Internet Access (PIA) VPN Client version v82 for Linux, consider restricting access to the /tmp/ruby-deploy.old/lib path to prevent malicious library loading until a patch is available. As a temporary workaround, disabling the execution of the root runner.64 binary could mitigate the risk of exploitation.