Bug #1176: In some tools the return value of setuid() is not checked - DCMTK - OFFIS DCMTK and DICOM Projects

Actions

Copy link

Bug #1176

closed

In some tools the return value of setuid() is not checked

Added by Marco Eichelberg 1 day ago.

Status:

Closed

Priority:

Normal

Assignee:

Michael Onken

Category:

Target version:

Start date:

2025-11-06

Due date:

% Done:

100%

Estimated time:

Module:

Operating System:

Compiler:

Description

In some tools the return value of setuid() is not checked. In the worstcase this could lead to privilege escalation since the process does not give up its root privileges and continue as root.

Reported by Hector Marco.

Closed by commit #beaf5a5c2.

This issue has been registered as CVE-2013-6825 (https://www.cve.org/CVERecord?id=CVE-2013-6825).

No data to display

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

DCMTK

Bug #1176

In some tools the return value of setuid() is not checked