FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

security/ossec-hids-* -- root escalation via syscheck feature

Affected packages
2.7 <= ossec-hids-client < 2.8.2
2.7 <= ossec-hids-local < 2.8.2
2.7 <= ossec-hids-server < 2.8.2

Details

VuXML ID c470db07-1098-11e5-b6a8-002590263bf5
Discovery 2015-06-11
Entry 2015-06-12

OSSEC reports:

The CVE-2015-3222 vulnerability, which allows for root escalation via sys check has been fixed in OSSEC 2.8.2. This issue does not affect agents.

References

CVE Name CVE-2015-3222
FreeBSD PR ports/200801
URL http://www.ossec.net/?p=1198
URL https://github.com/ossec/ossec-hids/releases/tag/2.8.2