CVE-2017-14159

ADVISORY - nist

Summary

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as demonstrated by openldap-initscript.

EPSS Score⁠: 0.00113 (0.307)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-665⁠

Improper Initialization

ADVISORY - redhat

CWE-377⁠

Insecure Temporary File

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.