7 matches found
Ubuntu: Security Advisory (USN-917-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[USN-917-1] Puppet vulnerabilities
=========================================================== Ubuntu Security Notice USN-917-1 March 24, 2010 puppet vulnerabilities CVE-2009-3564, CVE-2010-0156 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10 This...
Ubuntu 9.10 : puppet vulnerabilities (USN-917-1)
It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...
USN-917-1: Puppet vulnerabilities
It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...
CVE-2009-3564
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...
CVE-2009-3564
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...
CVE-2009-3564
Puppet CVE-2009-3564 affects Puppet (puppetmasterd) where supplementary groups are not dropped when switching users, enabling local access to restricted files. Affected: Puppet up to version 0.24.6 (noted in the Ubuntu USN-917-1 advisory); remediation: upgrade to the patched release (e.g., Puppet...