I noticed that Util-Vserver was reported with a SUEXEC Privilege
Escalation Weakness in the April 10 report.
I found nothing on the list about this back as far as late February. Is
this report FUD, not worth worrying about, or I missed the whole thread
on the list?
( https://savannah.nongnu.
Roderick A. Anderson wrote:
I noticed that Util-Vserver was reported with a SUEXEC Privilege
Escalation Weakness in the April 10 report.
I found nothing on the list about this back as far as late February. Is
this report FUD, not worth worrying about, or I missed the whole thread
on the list
Daniel Hokka Zakrisson wrote:
Roderick A. Anderson wrote:
It was discussed on IRC. How anyone can consider the host root entering
a guest and executing a command as root as privilege escalation is
beyond me (when in reality, you are dropping lots of capabilities,
filesystem access, etc.).
