Improper Use of Temporary Directories in Bubblewrap Allows for Privilege Escalation

Improper Use of Temporary Directories in Bubblewrap Allows for Privilege Escalation

CVE-2019-12439 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

bubblewrap.c in Bubblewrap before 0.3.3 misuses temporary directories in /tmp as a mount point. In some particular configurations (related to XDG_RUNTIME_DIR), a local attacker may abuse this flaw to prevent other users from executing bubblewrap or potentially execute code.

Learn more about our Cis Benchmark Audit For Suse Linux Enterprise Server.