klingon00 Posted July 28, 2021 Posted July 28, 2021 Is this a possible concern with Unraid? https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909 Quote The Qualys Research Team has discovered a size_t-to-int type conversion vulnerability in the Linux Kernel’s filesystem layer affecting most Linux operating systems. Any unprivileged user can gain root privileges on a vulnerable host by exploiting this vulnerability in a default configuration. It would seem most Linux distributions are vulnerable from 2014 onward. If I understand it correctly, this would mostly be a concern if you have untrusted local user accounts in Unraid, correct? If my users only connect using accounts on docker services, would this be less of a concern? Quote
Squid Posted July 28, 2021 Posted July 28, 2021 All plugins etc on Unraid run as root and there are no users in the linux sense. 1 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.