PT-2022-12348 · Aide+7 · Aide+7

David Bouman

Published

2022-01-20

Updated

2024-06-15

CVE-2021-45417

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions AIDE versions prior to 0.17.4

Description The issue allows local users to obtain root privileges via crafted file metadata, such as XFS extended attributes or tmpfs ACLs, because of a heap-based buffer overflow.

Recommendations For versions prior to 0.17.4, update to version 0.17.4 or later to resolve the issue. As a temporary workaround, consider restricting access to crafted file metadata to minimize the risk of exploitation.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2022:0441

CESA-2022_0441

CESA-2022_0473

CVE-2021-45417

DLA-2894-1

DSA-5051-1

MGASA-2024-0100

OESA-2022-1523

OPENSUSE-SU-2022:0150-1

OPENSUSE-SU-2022_0150-1

OPENSUSE-SU-2022_0150-2

OPENSUSE-SU-2024:11960-1

RHSA-2022:0440

RHSA-2022:0441

RHSA-2022:0456

RHSA-2022:0464

RHSA-2022:0472

RHSA-2022:0473

RHSA-2022:0540

RHSA-2022:1263

RHSA-2022_0441

RHSA-2022_0472

RHSA-2022_0473

RLSA-2022:0441

SUSE-SU-2022:0145-1

SUSE-SU-2022:0150-1

SUSE-SU-2022:0150-2

SUSE-SU-2022:14879-1

SUSE-SU-2022_0145-1

SUSE-SU-2022_0150-1

SUSE-SU-2022_14879-1

USN-5243-1

USN-5243-2

Affected Products

Aide

Almalinux

Centos

Linuxmint

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2022-12348 · Aide+7 · Aide+7

CVE-2021-45417

Weakness Enumeration

Related Identifiers

Affected Products

References · 53