CLSA-2025-1761326171
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2025-1761326171.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2025-1761326171
- Upstream
- Published
- 2025-10-24T17:16:15Z
- Modified
- 2026-06-04T09:45:05.683443683Z
- Summary
- Fix CVE(s): CVE-2019-18276
- Details
-
- SECURITY UPDATE: privilege escalation vulnerability in privileged mode
- debian/patches/CVE-2019-18276.patch: fix setuid/setgid handling when bash is running in privileged mode, use setresuid/setresgid over setuid/setgid when available
- CVE-2019-18276
- SECURITY UPDATE: privilege escalation vulnerability in privileged mode
- References
Affected packages
TuxCare:Debian:10 / bash
Package
- Name
- bash
- Purl
- pkg:deb/tuxcare/bash?distro=debian-10
TuxCare:Debian:10 / bash-builtins
Package
- Name
- bash-builtins
- Purl
- pkg:deb/tuxcare/bash-builtins?distro=debian-10
TuxCare:Debian:10 / bash-doc
Package
- Name
- bash-doc
- Purl
- pkg:deb/tuxcare/bash-doc?distro=debian-10