cyberMEDIUM2026-04-22 17:16 UTC

CVE-2026-35376 - uutils coreutils chcon Security Bypass and Mandatory Access Control (MAC) Inconsistency via TOCTOU Race Condition

CVE ID :CVE-2026-35376 Published : April 22, 2026, 5:16 p.m. | 24 minutes ago Description :A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the chcon utility of uutils coreutils during recursive operations. The implementation resolves recursive targets using a fresh path lookup

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] This Vercel breach made me rethink all my connected apps
[CYBER] France's national agency for managing IDs and passports suffered a data breach last week
[CYBER] France confirms data breach at government agency that manages citizens' IDs
[CYBER] Pack2TheRoot (CVE-2026-41651): Cross-Distro Local Privilege Escalation Vulnerability
[CYBER] New Mirai campaign exploits RCE flaw in EoL D-Link routers
[CYBER] 'We will reveal their identity photos, names, location, and other': Experts reveal extraordinary battle between rival ransomware gangs — and how victims can get their data back

Editorial policy · Report a correction