The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the (1) keepalived.pid, (2) checkers.pid, and (3) vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files.
2011-05-20T22:55:04.970
2025-04-11T00:51:21.963
Deferred
CVSSv2: 3.6 (LOW)
AV:L/AC:L/Au:N/C:N/I:P/A:P
3.9
4.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | keepalived | keepalived | ≤ 1.2.2 | Yes |
| Application | keepalived | keepalived | 0.2.1 | Yes |
| Application | keepalived | keepalived | 0.2.3 | Yes |
| Application | keepalived | keepalived | 0.2.6 | Yes |
| Application | keepalived | keepalived | 0.2.7 | Yes |
| Application | keepalived | keepalived | 0.3.5 | Yes |
| Application | keepalived | keepalived | 0.3.6 | Yes |
| Application | keepalived | keepalived | 0.3.7 | Yes |
| Application | keepalived | keepalived | 0.3.8 | Yes |
| Application | keepalived | keepalived | 0.4.8 | Yes |
| Application | keepalived | keepalived | 0.4.9 | Yes |
| Application | keepalived | keepalived | 0.4.9a | Yes |
| Application | keepalived | keepalived | 0.5.3 | Yes |
| Application | keepalived | keepalived | 0.5.5 | Yes |
| Application | keepalived | keepalived | 0.5.6 | Yes |
| Application | keepalived | keepalived | 0.5.7 | Yes |
| Application | keepalived | keepalived | 0.5.8 | Yes |
| Application | keepalived | keepalived | 0.5.9 | Yes |
| Application | keepalived | keepalived | 0.6.1 | Yes |
| Application | keepalived | keepalived | 0.6.2 | Yes |
| Application | keepalived | keepalived | 0.6.3 | Yes |
| Application | keepalived | keepalived | 0.6.4 | Yes |
| Application | keepalived | keepalived | 0.6.5 | Yes |
| Application | keepalived | keepalived | 0.6.6 | Yes |
| Application | keepalived | keepalived | 0.6.7 | Yes |
| Application | keepalived | keepalived | 0.6.8 | Yes |
| Application | keepalived | keepalived | 0.6.9 | Yes |
| Application | keepalived | keepalived | 0.6.10 | Yes |
| Application | keepalived | keepalived | 0.7.1 | Yes |
| Application | keepalived | keepalived | 0.7.6 | Yes |
| Application | keepalived | keepalived | 1.0.0 | Yes |
| Application | keepalived | keepalived | 1.0.1 | Yes |
| Application | keepalived | keepalived | 1.0.2 | Yes |
| Application | keepalived | keepalived | 1.0.3 | Yes |
| Application | keepalived | keepalived | 1.1.0 | Yes |
| Application | keepalived | keepalived | 1.1.1 | Yes |
| Application | keepalived | keepalived | 1.1.2 | Yes |
| Application | keepalived | keepalived | 1.1.3 | Yes |
| Application | keepalived | keepalived | 1.1.4 | Yes |
| Application | keepalived | keepalived | 1.1.5 | Yes |
| Application | keepalived | keepalived | 1.1.6 | Yes |
| Application | keepalived | keepalived | 1.1.7 | Yes |
| Application | keepalived | keepalived | 1.1.8 | Yes |
| Application | keepalived | keepalived | 1.1.9 | Yes |
| Application | keepalived | keepalived | 1.1.10 | Yes |
| Application | keepalived | keepalived | 1.1.11 | Yes |
| Application | keepalived | keepalived | 1.1.12 | Yes |
| Application | keepalived | keepalived | 1.1.13 | Yes |
| Application | keepalived | keepalived | 1.1.14 | Yes |
| Application | keepalived | keepalived | 1.1.15 | Yes |
| Application | keepalived | keepalived | 1.1.16 | Yes |
| Application | keepalived | keepalived | 1.1.17 | Yes |
| Application | keepalived | keepalived | 1.1.18 | Yes |
| Application | keepalived | keepalived | 1.1.19 | Yes |
| Application | keepalived | keepalived | 1.1.20 | Yes |
| Application | keepalived | keepalived | 1.2.0 | Yes |
| Application | keepalived | keepalived | 1.2.1 | Yes |