MNBSD-2016-5: Linux emulation issetugid(2) returns incorrect information

Severity: Unknown

Affected Package: kernel

Summary: Linux emulation issetugid(2) returns incorrect information

Description

A programming error in the Linux compatibility layer could cause the issetugid(2) system call to return incorrect information. Applications relying on issetugid() for security decisions could be misled, potentially enabling privilege escalation. Only systems using the Linux binary compatibility layer are affected. Fixed in the 0.7.5 release.

Affected Versions

kernel

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2016-1883

Published: March 10, 2016
Last Modified: March 10, 2016