EUVD-2020-26076

Malware in sbrugna...

K16876: Mount (seunshare_mount) vulnerability CVE-2011-1101

Security Advisory Description Description CVE-2011-1101 The seunsharemount function in sandbox/seunshare.c in seunshare in certain Red Hat packages of policycoreutils 2.0.83 and earlier in Red Hat Enterprise Linux RHEL 6 and earlier, and Fedora 14 and earlier, mounts a new directory on top of /tm...

IBM AIX and VIOS License Issues Vulnerability

IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture.IBM VIOS is a virtual IO server. An authorization issue vulnerability exists in IBM AIX and VIOS, which allows local attackers to exploit the vulnerability with the ksu user command to gain ro...

Security Bulletin: Vulnerability in ksu affects AIX (CVE-2020-4829)

Summary There is a vulnerability in the ksu user command that affects AIX. Vulnerability Details CVEID: CVE-2020-4829 DESCRIPTION: IBM AIX could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. CVSS Base score: 8.4 CVSS Temporal Score: See:...

CVE-2020-4829

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960...

CVE-2020-4829

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in the ksu user command to gain root privileges. IBM X-Force ID: 189960...

IBM AIX 授权问题漏洞

IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture.IBM VIOS is a virtual IO server. An authorization issue vulnerability exists in IBM AIX and VIOS, which allows local attackers to exploit the vulnerability with the ksu user command to gain ro...

krb5 security, bug fix, and enhancement update

1.14.1-26 - Use responder in non-preauth AS reqs - Resolves: 1363690 1.14.1-25 - Fix bad debuglog call in selinux handling - Resolves: 1292153 1.14.1-24 - Fix KKDCPP with TLS SNI by always presenting 'Host:' header - Resolves: 1364993 1.14.1-23 - Add dependency on libkadm5 to krb5-devel - Resolve...

krb5 security, bug fix and enhancement update

1.12.2-14 - fix for kinit -C loops 1184629, MIT/krb5 issue 243, 'Do not loop on principal unknown errors'. 1.12.2-13 - fix for CVE-2014-5352 1179856 'gssprocesscontexttoken incorrectly frees context MITKRB5-SA-2015-001' - fix for CVE-2014-9421 1179857 'kadmind doubly frees partial deserialization...

RedHat Linux - Stickiness of /tmp

from: http://marc.info/?l=full-disclosure&m=129842239022495&w=2 Developers should not rely on the stickiness of /tmp on Red Hat Linux --------------------------------------------------------------------- Recent versions of Red Hat Enterprise Linux and Fedora provide seunshare, a setuid root utili...

Fedora 12 : krb5-1.7-15.fc12 (2009-13539)

This update incorporates the upstream patches to fix CVE-2009-3295, a remotely- triggerable crash in the KDC. This update also addresses some packaging bugs, makes changes to the PAM support in ksu, and backports a change which allows GSSAPI acceptors to store delegated Kerberos credentials in...

MIT Kerberos (krb5) ftpd and ksu do not properly validate seteuid() calls

Overview Privilege escalation vulnerabilities in MIT krb5 ftpd and ksu may allow an authenticated attacker to execute arbitrary code. Description The MIT krb 5 ftpd and ksu programs contain multiple privilege escalation vulnerabilities. These vulnerabilities are dependent on the host operating...

CVE-2006-3084

The 1 ftpd and 2 ksu programs in a MIT Kerberos 5 krb5 up to 1.5, and 1.4.x before 1.4.4, and b Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to fail to drop privileges. NOTE: as of 20060808, it is not kno...

CVE-2000-0392

CVE-2000-0392 : Buffer overflow in the Kerberos 5 ksu utility allows local users to gain root privileges. Documented by NVD/CVE records and CERT advisory CA-2000-06, with historical vendor references (e.g., RHSA-2000-025). Some sources (SNYK) note no fixed version for kerb5; others provide vendor...

Дырки в утилитах из RedHat

Дырки в утилитах gkermit egid==uucp; slocate gid slocate, slrn, C-Kermit gid=uucp, diskcheck и Mgetty-sendfaxперезапись любого файла, ksu sgid root, eSound, IMAP4rev1 v12.264 DoS,...

Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krb_rd_req() Local Buffer Overflow (2)

Cygnus Network Security 4.0KerbNet 5.0 MIT Kerberos 45 RedHat 6.2 - Compatibility krbrdreq Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4...

Cygnus Network Security 4.0/KerbNet 5.0 / MIT Kerberos 4/5 / RedHat 6.2 - Compatibility 'krb_rd_req()' Local Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos 4 patch level 10 and, most...

Cygnus Network Security 4.0/KerbNet 5.0 / MIT Kerberos 4/5 / RedHat 6.2 - Compatibility 'krb_rd_req()' Remote Buffer Overflow (3)

// source: https://www.securityfocus.com/bid/1220/info Several buffer overflow vulnerabilities exist in Kerberos 5 implmenetations due to buffer overflows in the Kerberos 4 compatability code. These include MIT Kerberos 5 releases 1.0.x, 1.1 and 1.1.1, MIT Kerberos 4 patch level 10 and, most...