439 matches found
[ MDVSA-2011:185 ] libcap
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:185 http://www.mandriva.com/security/ Package : libcap Date : December 12, 2011 Affected: 2010.1, 2011., Enterprise Server 5.0 Problem Description: A vulnerability has been discovered and corrected in libcap...
Mandriva Update for libcap MDVSA-2011:185 (libcap)
Check for the Version of libcap OpenVAS Vulnerability Test Mandriva Update for libcap MDVSA-2011:185 libcap Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Mandriva Update for libcap MDVSA-2011:185 (libcap)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
libcap security and bug fix update
2.16-5.5 - remove some obsolete parameters from capsh manpage 2.16-5.4 - add capsh manpage 730957 2.16-5.3 - make sure to chdir '/' after calling chroot http://cwe.mitre.org/data/definitions/243.html...
Mandriva Linux Security Advisory : libcap (MDVSA-2011:185)
A vulnerability has been discovered and corrected in libcap : capsh did not chdir/ after calling chroot. Programs could therefore access the current directory outside of the chroot CVE-2011-4099. The updated packages have been patched to correct this issue. %NASLMINLEVEL 70300 C Tenable Network...
RHEL 6 : libcap (RHSA-2011:1694)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1694 advisory. The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root...
Low: Red Hat Security Advisory: libcap security and bug fix update
Updated libcap packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
[SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat)
CVE-2011-2729: Commons Daemon fails to drop capabilities Apache Tomcat Severity: Important Vendor: The Apache Software Foundation Versions Affected: Tomcat 7.0.0 to 7.0.19 Tomcat 6.0.30 to 6.0.32 Tomcat 5.5.32 to 5.5.33 Description: Due to a bug in the capabilities code, jsvc the service wrapper...
Fedora Update for libcap FEDORA-2011-9844
Check for the Version of libcap OpenVAS Vulnerability Test Fedora Update for libcap FEDORA-2011-9844 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Fedora Update for libcap FEDORA-2011-9844
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 15 : libcap-2.22-1.fc15 (2011-9844)
Update to libcap-2.22, includes fixes for http://cwe.mitre.org/data/definitions/243.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...
[SECURITY] Fedora 15 Update: libcap-2.22-1.fc15
libcap is a library for getting and setting POSIX.1e formerly POSIX 6 draft 15 capabilities...
MDVA-2010:117 : flashplayer
Dependency problems was discovered on Mandriva Linux 2009.0 Powerpack x8664 which prevented the flashplayer and libsmbclient0 packages to install smoothly using MandrivaUpdate. This advisory provides the missing packages. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the...
Samba CAP_DAC_OVERRIDE文件权限绕过安全限制漏洞
BUGTRAQ ID: 38606 CVE ID: CVE-2010-0728 Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。 如果启用了libcap支持,则所有的smbd进程都继承了CAPDACOVERRIDE功能标记,这允许通过认证的远程用户通过标准的文件系统操作绕过预期的文件权限限制读写访问文件。 Samba Samba 3.5.0 Samba Samba 3.4.6 Samba Samba 3.3.11 厂商补丁: Samba ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
DEBIAN-CVE-2010-0728
smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAPDACOVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client...
Input validation
smbd in Samba 3.3.11, 3.4.6, and 3.5.0, when libcap support is enabled, runs with the CAPDACOVERRIDE capability, which allows remote authenticated users to bypass intended file permissions via standard filesystem operations with any client...
CVE-2010-0728
CVE-2010-0728 concerns: in Samba, the smbd service runs with CAP_DAC_OVERRIDE when libcap support is enabled in Samba 3.3.11, 3.4.6, and 3.5.0, enabling remote authenticated users to bypass file permissions via standard filesystem operations. The connected documents confirm this exact root cause ...
Mandriva Linux Security Advisory : wireshark (MDVSA-2008:001-1)
A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or arbitrary code execution. This update provides Wireshark 0.99.7 which is not vulnerable to these issues. An updated version of libsmi is also being provided, not because of security...
Mandriva Update for wireshark MDVSA-2008:001-1 (wireshark)
Check for the Version of wireshark OpenVAS Vulnerability Test Mandriva Update for wireshark MDVSA-2008:001-1 wireshark Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...