Ubuntu Security Notice USN-2598-1

Ubuntu Security Notice 2598-1 – A race condition between chown() and execve() was discovered in the Linux kernel. A local attacker could exploit this race by using chown on a setuid-user-binary to gain administrative privileges.

Leave a Reply