libuv before 0.10.34 does not properly drop group privileges, which allows context-dependent attackers to gain privileges via unspecified vectors.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-273,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| fedoraproject | fedora | 21 |
| nodejs | node.js | * |
| libuv_project | libuv | * |