CVE-2008-0008

The pa_drop_root function in PulseAudio 0.9.8, and a certain 0.9.9 build, does not check return values from (1) setresuid, (2) setreuid, (3) setuid, and (4) seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail via attacks such as resource exhaustion.
Severity
UNKNOWN
AV:L/AC:L/Au:N/C:C/I:C/A:C
Atk. Vector
LOCAL
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
VendorProductVersion
pulseaudiopulseaudio
0.9.6
pulseaudiopulseaudio
0.9.8
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
pulseaudio
bullseye
14.2-2
fixed
bookworm
16.1+dfsg1-2
fixed
sid
16.1+dfsg1-5.1
fixed
trixie
16.1+dfsg1-5.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
pulseaudio
gutsy
Fixed 0.9.6-1ubuntu2.1
released
feisty
Fixed 0.9.5-5ubuntu4.2
released
edgy
dne
dapper
dne
References