vulnerability

Huawei EulerOS: CVE-2016-7545: policycoreutils security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Jan 19, 2017	Nov 30, 2017	Aug 13, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Jan 19, 2017

Added

Nov 30, 2017

Modified

Aug 13, 2025

Description

It was found that the sandbox tool provided in policycoreutils was vulnerable to a TIOCSTI ioctl attack. A specially crafted program executed via the sandbox command could use this flaw to execute arbitrary commands in the context of the parent shell, escaping the sandbox.

Solutions

huawei-euleros-2_0_sp1-upgrade-policycoreutilshuawei-euleros-2_0_sp1-upgrade-policycoreutils-develhuawei-euleros-2_0_sp1-upgrade-policycoreutils-guihuawei-euleros-2_0_sp1-upgrade-policycoreutils-newrolehuawei-euleros-2_0_sp1-upgrade-policycoreutils-pythonhuawei-euleros-2_0_sp1-upgrade-policycoreutils-sandbox

References

CVE-2016-7545
https://attackerkb.com/topics/CVE-2016-7545
CWE-284
EULEROS-EulerOS-SA-2016-1083

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today