CVE-2025-8941 | THREATINT

Description

A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a "complete" fix for CVE-2025-6020.

PUBLISHED Reserved 2025-08-13 | Published 2025-08-13 | Updated 2026-02-26 | Assigner redhat

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

Default status

affected

0:1.1.8-23.el7_9.2 (rpm) before *

unaffected

Default status

affected

0:1.3.1-38.el8_10 (rpm) before *

unaffected

Default status

affected

0:1.3.1-8.el8_2.2 (rpm) before *

unaffected

Default status

affected

0:1.3.1-14.el8_4.2 (rpm) before *

unaffected

Default status

affected

0:1.3.1-14.el8_4.2 (rpm) before *

unaffected

Default status

affected

0:1.3.1-16.el8_6.3 (rpm) before *

unaffected

Default status

affected

0:1.3.1-16.el8_6.3 (rpm) before *

unaffected

Default status

affected

0:1.3.1-16.el8_6.3 (rpm) before *

unaffected

Default status

affected

0:1.3.1-26.el8_8.2 (rpm) before *

unaffected

Default status

affected

0:1.3.1-26.el8_8.2 (rpm) before *

unaffected

Default status

affected

0:1.5.1-26.el9_6 (rpm) before *

unaffected

Default status

affected

0:1.5.1-26.el9_6 (rpm) before *

unaffected

Default status

affected

0:1.5.1-9.el9_0.3 (rpm) before *

unaffected

Default status

affected

0:1.5.1-15.el9_2.2 (rpm) before *

unaffected

Default status

affected

0:1.5.1-24.el9_4.1 (rpm) before *

unaffected

Default status

affected

1.11-19 (rpm) before *

unaffected

Default status

affected

1.11-8 (rpm) before *

unaffected

Default status

affected

1.12-4 (rpm) before *

unaffected

Default status

affected

sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323 (rpm) before *

unaffected

Default status

affected

sha256:c953e9f9abf9cf25bf65bb3ffdc86ccf49b3e69a1cf3fbb47b6972e421fd6628 (rpm) before *

unaffected

Default status

affected

sha256:c85cfbcaf7888885e57596b7b8bde3894718cfc33326499b24961a66a62cf083 (rpm) before *

unaffected

Default status

affected

sha256:4ca38b33efec0d2dd17a8fd822a7c18281810676ceabb0c1db90953cb91cd5ea (rpm) before *

unaffected

Default status

affected

sha256:24722900db1425bf0c27f6ad6f3fb7d79ff9ebc433bdab58423fa71bab76122b (rpm) before *

unaffected

Default status

affected

sha256:f5e1602d72177d77f1b879c76e6f6cfbc2979c136c06ca9f03ea97ffb369b7a6 (rpm) before *

unaffected

Default status

affected

sha256:cead623ceda4048cabaa81c371ed2a8143f5c5514276fca1d71685bd9e6d1e65 (rpm) before *

unaffected

Default status

affected

sha256:59fb1f7f1653361d94f7d48b42d8fe19ed3263c1c78654837c11f2135544c1ac (rpm) before *

unaffected

Timeline

2025-08-13:	Reported to Red Hat.
2025-08-13:	Made public.

References

access.redhat.com/errata/RHSA-2025:14557 (RHSA-2025:14557) vendor-advisory

access.redhat.com/errata/RHSA-2025:15099 (RHSA-2025:15099) vendor-advisory

access.redhat.com/errata/RHSA-2025:15100 (RHSA-2025:15100) vendor-advisory

access.redhat.com/errata/RHSA-2025:15101 (RHSA-2025:15101) vendor-advisory

access.redhat.com/errata/RHSA-2025:15102 (RHSA-2025:15102) vendor-advisory

access.redhat.com/errata/RHSA-2025:15103 (RHSA-2025:15103) vendor-advisory

access.redhat.com/errata/RHSA-2025:15104 (RHSA-2025:15104) vendor-advisory

access.redhat.com/errata/RHSA-2025:15105 (RHSA-2025:15105) vendor-advisory

access.redhat.com/errata/RHSA-2025:15106 (RHSA-2025:15106) vendor-advisory

access.redhat.com/errata/RHSA-2025:15107 (RHSA-2025:15107) vendor-advisory

access.redhat.com/errata/RHSA-2025:15709 (RHSA-2025:15709) vendor-advisory

access.redhat.com/errata/RHSA-2025:15827 (RHSA-2025:15827) vendor-advisory

access.redhat.com/errata/RHSA-2025:15828 (RHSA-2025:15828) vendor-advisory

access.redhat.com/errata/RHSA-2025:16524 (RHSA-2025:16524) vendor-advisory

access.redhat.com/errata/RHSA-2025:17181 (RHSA-2025:17181) vendor-advisory

access.redhat.com/errata/RHSA-2025:18219 (RHSA-2025:18219) vendor-advisory

access.redhat.com/errata/RHSA-2025:21885 (RHSA-2025:21885) vendor-advisory

access.redhat.com/security/cve/CVE-2025-8941 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2388220 (RHBZ#2388220) issue-tracking

cve.org (CVE-2025-8941)

nvd.nist.gov (CVE-2025-8941)

Download JSON