CVE-2011-1784
EPSS 0.05%
Description
The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the (1) keepalived.pid, (2) checkers.pid, and (3) vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files.
How to fix CVE-2011-1784
To remediate CVE-2011-1784, upgrade the affected package to a fixed version below.
- Debian/keepalived—upgrade to 1:1.2.2-2 or later
Is CVE-2011-1784 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:1.2.2-2