Ubuntu
linux-aws package

  1. Bug #1951132
  2. Comment #2

Comment 2 for bug 1951132

Revision history for this message
Tim Gardner (timg-tpi) wrote :

The patch for this CVE has been applied:

  * other users' coredumps can be read via setgid directory and killpriv bypass
    (LP: #1779923) // CVE-2018-13405
    - Fix up non-directory creation in SGID directories