1
Candidate: CVE-2016-2781
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2781
5
http://seclists.org/oss-sec/2016/q1/452
7
chroot in GNU coreutils, when used with --userspec, allows local users to
8
escape to the parent session via a crafted TIOCSTI ioctl call, which pushes
9
characters to the terminal's input buffer.
12
mdeslaur> as of 2017-08-01, no viable solution
14
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=816320
15
https://bugzilla.redhat.com/show_bug.cgi?id=1312863
21
upstream_coreutils: needs-triage
22
precise_coreutils: ignored (reached end-of-life)
23
precise/esm_coreutils: deferred (2017-08-01)
24
trusty_coreutils: deferred (2017-08-01)
25
vivid/stable-phone-overlay_coreutils: ignored (reached end-of-life)
26
vivid/ubuntu-core_coreutils: ignored (reached end-of-life)
27
wily_coreutils: ignored (reached end-of-life)
28
xenial_coreutils: deferred (2017-08-01)
29
yakkety_coreutils: ignored (reached end-of-life)
30
zesty_coreutils: ignored (reached end-of-life)
31
artful_coreutils: deferred (2017-08-01)
32
bionic_coreutils: deferred (2017-08-01)
33
devel_coreutils: deferred (2017-08-01)