4 matches found
CVE-2018-0493
remctld in remctl before 3.14, when an attacker is authorized to execute a command that uses the sudo option, has a use-after-free that leads to a daemon crash, memory corruption, or arbitrary command execution...
Fedora 28 : remctl (2018-99eed1942f)
Update to 3.14 CVE-2018-0493 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
CVE-2018-0493
CVE-2018-0493 affects remctl’s server component, specifically remctld, up to version before 3.14. A use-after-free condition occurs when an attacker who is authorized to run a command that uses the sudo option can cause a daemon crash, memory corruption, or arbitrary command execution. Public det...
Debian DSA-4159-1 : remctl - security update
Santosh Ananthakrishnan discovered a use-after-free in remctl, a server for Kerberos-authenticated command execution. If the command is configured with the sudo option, this could potentially result in the execution of arbitrary code. The oldstable distribution jessie is not affected. C Tenable...