4 matches found
CVE-2008-0884
The Replace function in the capp-lspp-config script in the 1 lspp-eal4-config-ibm and 2 capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux RHEL 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth file permissions, leading to a change to world-writable...
CVE-2008-0884
The Replace function in the capp-lspp-config script in the 1 lspp-eal4-config-ibm and 2 capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux RHEL 5 uses lstat instead of stat to determine the /etc/pam.d/system-auth file permissions, leading to a change to world-writable...
CVE-2008-0884
CVE-2008-0884 affects capp-lspp-config scripts in lspp-eal4-config-ibm and capp-lspp-eal4-config-hp (versions before 0.65-2) on Red Hat Enterprise Linux 5. The Replace function uses lstat instead of stat to check /etc/pam.d/system-auth permissions, causing /etc/pam.d/system-auth-ac to become worl...
Important: Red Hat Security Advisory: lspp-eal4-config-ibm and capp-lspp-eal4-config-hp security update
Updated lspp-eal4-config-ibm and capp-lspp-eal4-config-hp packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The lspp-eal4-config-ibm and capp-lspp-eal4-config-h...