OPENSUSE-SU-2024:10076-1 libgnomesu-2.0.0-2.3 on GA media

These are all security issues fixed in the libgnomesu-2.0.0-2.3 package on the GA media of openSUSE Tumbleweed...

openSUSE Security Update : libgnomesu (openSUSE-SU-2011:0694-1)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges CVE-2011-1946. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

openSUSE Security Update : libgnomesu (openSUSE-SU-2011:0694-1)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges CVE-2011-1946. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

SuSE 10 Security Update : libgnomesu (ZYPP Patch Number 7580)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges. CVE-2011-1946 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

CVE-2011-1946

gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of thes...

Path traversal

gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of thes...

CVE-2011-1946

gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid function, which allows local users to gain privileges by leveraging access to two unprivileged user accounts, and running many processes under one of thes...

SuSE 11.1 Security Update : libgnomesu (SAT Patch Number 4805)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges. CVE-2011-1946 Note: this is just a re-release of the previous update to fix a regression unrelated to the security issue. %NASLMINLEVEL 70300 C Tenable Networ...

SuSE 11.1 Security Update : libgnomesu (SAT Patch Number 4735)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges. CVE-2011-1946 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update...

SuSE 10 Security Update : libgnomesu (ZYPP Patch Number 7581)

The libgnomesu pam backend did not check the return value of the setuid functions. Local users could exploit that to gain root privileges. CVE-2011-1946 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...