klingon00 Posted July 28, 2021 Share Posted July 28, 2021 Is this a possible concern with Unraid? https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909 Quote The Qualys Research Team has discovered a size_t-to-int type conversion vulnerability in the Linux Kernel’s filesystem layer affecting most Linux operating systems. Any unprivileged user can gain root privileges on a vulnerable host by exploiting this vulnerability in a default configuration. It would seem most Linux distributions are vulnerable from 2014 onward. If I understand it correctly, this would mostly be a concern if you have untrusted local user accounts in Unraid, correct? If my users only connect using accounts on docker services, would this be less of a concern? Quote Link to comment
Squid Posted July 28, 2021 Share Posted July 28, 2021 All plugins etc on Unraid run as root and there are no users in the linux sense. 1 Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.