Linux abrt sosreport Symlink Privilege Escalation Exploit

The sosreport program, a component of the ABRT bug reporting system used in Red Hat Enterprise Linux, does not handle symbolic links correctly when writing core dumps of ABRT programs to the ABRT dump directory (/var/tmp/abrt). This can be leveraged by local unprivileged attackers to gain root privileges on vulnerable systems.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2015-5287
Product Version: 
2015_R1
Released Date: 
Thursday, December 24, 2015 - 00:00