Gentoo Security Advisory GLSA 200907-10 (syslog-ng)

The remote host is missing updates announced in advisory GLSA 200907-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

GLSA-200907-10 : Syslog-ng: Chroot escape

The remote host is affected by the vulnerability described in GLSA-200907-10 Syslog-ng: Chroot escape Florian Grandel reported that Syslog-ng does not call chdir before chroot which leads to an inherited file descriptor to the current working directory. Impact : A local attacker might exploit a...