CVE-2016-10156 (retired)

Priority
Description
A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid
files to be created when using the systemd timers features, allowing local
attackers to escalate their privileges to root. This is fixed in v229.
Notes
tyhicksIt looks to me like systemd from the stable phone overlay has the
vulnerable code in src/shared/util.c. However, systemd is not used for pid 1
on the phone so marking that specific release as low.
More Information

Updated: 2019-10-09 07:55:02 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)