Fluid Attacks Database

Description

Context relabeling of filesystems is vulnerable to symbolic link attack, allowing a local, unprivileged malicious entity to change the SELinux context of an arbitrary file to a context with few restrictions. This only happens when the relabeling process is done, usually when taking SELinux state from disabled to enable (permissive or enforcing). The issue was found in policycoreutils 2.5-11.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	policycoreutils	>=0 <2.7-1	2.7-1
debian 14	policycoreutils	>=0 <2.7-1	2.7-1
debian 12	policycoreutils	>=0 <2.7-1	2.7-1
debian 13	policycoreutils	>=0 <2.7-1	2.7-1
rpm rhel6	policycoreutils	-	-
rpm rhel7	policycoreutils	<0:2.5-22.el7	0:2.5-22.el7

Aliases

1. CVE-2018-10632. NVD-2018-10633. OSV-DEBIAN-2018-10634. OSV-2018-10635. SECURITY-TRACKER-CVE-2018-1063

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.