FAQ

What is the CVE-2018-1111?

CVE-2018-1111 is the official reference to this bug. CVE (Common Vulnerabilities and Exposures) is the Standard for Information Security Vulnerability Names maintained by MITRE.

How does the attack work?

Please review the exploit song

DynoRoot Request: PLEASE OWN ME

DynoRoot Response: HERE YOU ARE OWNED

Why is it called the DynoRoot bug?

A shell injection was found in the DYNamic host configuration protocOl client that gives you root.

What makes the DynoRoot bug unique?

In fact, all the boring normal bugs are way more important, just because there's a lot more of them. I don't think some spectacular security hole should be glorified or cared about as being any more "special" than a random spectacular crash due to bad locking.

Where can I find more information?

Red Hat.