LWN .net News from the source Content Weekly Edition Archives Search Kernel Security Distributions Events calendar Unread comments LWN FAQ Write for us menu User: Password: | | Subscribe / Log in / New account From : Sebastian Krahmer <krahmer-IBi9RG/b67k-AT-public.gmane.org> To : oss-security-ZwoEplunGu1jrUoiu81ncdBPR1lH4CV8-AT-public.gmane.org Subject : Headsup: systemd v228 local root exploit (CVE-2016-10156) Date : Tue, 24 Jan 2017 09:55:01 +0100 Message-ID : <20170124085501.GA9322@suse.de> Archive-link : Article Hi This is a heads up for a trivial systemd local root exploit, that was silently fixed in the upstream git as: commit 06eeacb6fe029804f296b065b3ce91e796e1cd0e Author: .... Date: Fri Jan 29 23:36:08 2016 +0200 basic: fix touch() creating files with 07777 mode mode_t is unsigned, so MODE_INVALID < 0 ...