Oval Definition:	oval:org.cisecurity:def:1810
Revision Date: 2017-03-03 Version: 6 Title: DSA-3780-1 -- ntfs-3g -- security update Description: Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2017-0358 DSA-3780-1 Platform(s): Debian 8 Product(s): ntfs-3g Definition Synopsis Debian 8 is installed AND ntfs-3g is earlier than 1:2014.2.15AR.2-1+deb8u3
BACK