EXECUTIVE SUMMARY:
Multiple security vulnerabilities have been identified in the rust/uu_install package, part of the uutils coreutils, affecting versions prior to 0.7.0. These flaws are Time-of-Check to Time-of-Use (TOCTOU) race conditions involving symlink manipulation during file installation and directory creation. An attacker with local access and write permissions to specific paths could exploit these issues to redirect privileged write operations. This poses a significant business risk as it allows for the arbitrary overwrite of system files, potentially leading to privilege escalation, system instability, or complete compromise of the host environment.[/subscribe_to_unlock_form]
EXECUTIVE SUMMARY:
Multiple security vulnerabilities have been identified in the rust/uu_install package, part of the uutils coreutils, affecting versions prior to 0.7.0. These flaws are Time-of-Check to Time-of-Use (TOCTOU) race conditions involving symlink manipulation during file installation and directory creation. An attacker with local access and write permissions to specific paths could exploit these issues to redirect privileged write operations. This poses a significant business risk as it allows for the arbitrary overwrite of system files, potentially leading to privilege escalation, system instability, or complete compromise of the host environment.[emaillocker id="1283"]
Successful exploitation of these vulnerabilities could result in severe integrity and availability impacts, including the modification of critical system files. The ability to overwrite arbitrary files creates a pathway for privilege escalation and persistent access within the environment. Organizations using affected versions should treat these findings with high urgency due to the potential for complete system compromise.
RECOMMENDATION:
REFERENCES:
The following reports contain further technical details:
https://github.com/advisories/GHSA-gwm6-q8ch-hcfr
https://github.com/advisories/GHSA-239g-2685-54x3