Fluid Attacks Database

Description

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	cron	>=0 <3.0pl1-129	3.0pl1-129
debian 14	systemd-cron	>=0 <1.5.17-2	1.5.17-2
debian 13	systemd-cron	>=0 <1.5.17-2	1.5.17-2
debian 11	systemd-cron	=1.15.18-1 \|\| =1.15.18-1.1 \|\| =1.15.18-1.2 \|\| =1.15.19-1 \|\| =1.15.19-2 \|\| =1.15.19-3 \|\| =1.15.19-4 \|\| =1.15.19-5 \|\| =1.15.20-1 \|\| =1.15.21-1 \|\| =1.15.22-1 \|\| =1.16-1 \|\| =1.16.1-1 \|\| =1.16.2-1 \|\| =1.16.3-1 \|\| =1.16.4-1 \|\| =1.16.5-1 \|\| =1.16.7-1 \|\| =1.5.16-1 \|\| =1.5.17-1 \|\| =1.5.17-2 \|\| =1.5.17-3 \|\| =1.90-1 \|\| =1.91-1 \|\| =2.0-1 \|\| =2.0.1-1 \|\| =2.0.1-2 \|\| =2.0.2-1 \|\| =2.1.0-1 \|\| =2.1.1-1 \|\| =2.1.2-1 \|\| =2.1.3-1 \|\| =2.2.0-1 \|\| =2.3.0-1 \|\| =2.3.0-1~bpo12+1 \|\| =2.3.0-2 \|\| =2.3.1-1 \|\| =2.3.2-1 \|\| =2.3.4-1 \|\| =2.4.0-1 \|\| =2.4.1-1 \|\| =2.5.0-1 \|\| =2.5.1-1 \|\| =2.5.1-2 \|\| =2.6.0-1 \|\| =2.7.0-1 \|\| =2.7.0-2	-
debian 12	systemd-cron	>=0 <1.5.17-2	1.5.17-2
debian 14	cron	>=0 <3.0pl1-129	3.0pl1-129
debian 13	cron	>=0 <3.0pl1-129	3.0pl1-129
debian 11	cron	>=0 <3.0pl1-129	3.0pl1-129

Aliases

1. CVE-2017-95252. NVD-2017-95253. OSV-DEBIAN-2017-95254. OSV-2017-95255. SECURITY-TRACKER-CVE-2017-9525

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.