Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleELSA-2007-0465
HistoryJun 20, 2007 - 12:00 a.m.

Moderate: pam security and bug fix update

2007-06-2000:00:00
Oracle
linux.oracle.com
12

0.0004 Low

EPSS

Percentile

8.6%

JSON

cdrtools-2.01.0.a32-0.EL3.6

[2.01.0.a32-0.EL3.6]

  • fix for CVE-2004-0813
  • cdrecord and readcd are now suid, but with a pam_console check
  • Resolves: rhbz#232096

[2.01.0.a32-0.EL3.3]

  • fix for CAN-2005-0866 “cdrecord insecure temporary file”

[2.01.0.a32-0.EL3.2]

  • added patch for CAN-2004-0806, if s.o. was so stupid to make cdrecord
    suid
  • removed the suid section from the manpage

[2.01.0.a32-0.EL3.1]

  • errata version for RHEL3

pam-0.75-72

[0.75-72]

  • remove /dev/cdwriter* from console.perms - CVE-2004-0813 (#133098)
  • decrement console login count correctly - CVE-2007-1716 (#234142)

[0.75-71]

  • requires ghostscript and linuxdoc-tools to build

[0.75-70]

  • fix memory leaks in pam_stack (#204055)
  • fix memory leak in pam_unix (#230625)

Related

nessus 17
centos 2
redhat 3
cve 4
gentoo 2
ubuntucve 3
openvas 3
securityvulns 3
cert 1
veracode 1
prion 1
oraclelinux 2
vmware 1
nessus
nessus
CentOS 3 : pam (CESA-2007:0465)
2007-06-14 00:00:00
Oracle Linux 3 : pam (ELSA-2007-0465)
2013-07-12 00:00:00
Scientific Linux Security Update : pam on SL3.x i386/x86_64
2012-08-01 00:00:00
centos
centos
cdda2wav, cdrecord, mkisofs, pam security update
2007-06-11 20:19:31
pam security update
2007-11-15 17:15:52
redhat
redhat
(RHSA-2007:0465) Moderate: pam security and bug fix update
2007-06-11 13:45:45
(RHSA-2007:0737) Moderate: pam security, bug fix, and enhancement update
2007-11-15 00:00:00
(RHSA-2007:0555) Moderate: pam security, bug fix, and enhancement update
2007-11-07 00:00:00
cve
cve
CVE-2004-0813
2004-12-31 05:00:00
CVE-2004-0806
2004-12-31 05:00:00
CVE-2005-0866
2005-05-02 04:00:00
gentoo
gentoo
cdrtools: Local root vulnerability in cdrecord if set SUID root
2004-09-14 00:00:00
VMware Workstation and Player: Multiple vulnerabilities
2007-11-18 00:00:00
ubuntucve
ubuntucve
CVE-2004-0813
2004-12-31 00:00:00
CVE-2004-0806
2004-12-31 00:00:00
CVE-2005-0866
2005-05-02 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200409-18 (cdrtools)
2008-09-24 00:00:00
Oracle Linux Local Check: ELSA-2007-0555
2015-10-08 00:00:00
Gentoo Security Advisory GLSA 200711-23 (vmware-workstation vmware-player)
2008-09-24 00:00:00
securityvulns
securityvulns
[Full-Disclosure] MDKSA-2004:091 - Updated cdrecord packages fix local root vulnerability
2004-09-08 00:00:00
Linux pam_console privilege escalation
2007-03-29 00:00:00
VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player
2007-09-21 00:00:00
cert
cert
cdrecord fails to set proper permissions on programs specified in RSH environment variable
2004-09-16 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:16:10
prion
prion
Code injection
2007-03-27 22:19:00
oraclelinux
oraclelinux
pam security, bug fix, and enhancement update
2007-11-19 00:00:00
pam security, bug fix, and enhancement update
2007-11-27 00:00:00
vmware
vmware
Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address critical security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages.
2007-09-18 00:00:00

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for ELSA-2007-0465
nessus17centos2redhat3cve4gentoo2ubuntucve3openvas3securityvulns3cert1veracode1prion1oraclelinux2vmware1