[CentOS] local privilege escalation in kernel and systemd

21 Jul 2021


      https://www.bleepingcomputer.com/news/security/new-linux-kernel-bug-lets-you-get-root-on-most-modern-distros/
Two related bugs involve mounting a very long path. The kernel bug requires 
passing a 1 GB path string, while the systemd bug involves an 8 MB path 
that overflows its stack.
Technical details here:
https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909
https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/cve-2021-33910-denial-of-service-stack-exhaustion-in-systemd-pid-1

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

[CentOS] local privilege escalation in kernel and systemd