5 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-11675
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/groonga ownership to the groonga account, which might let local users obtain root access because ...
CVE-2019-11675
The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/groonga ownership to the groonga account, which might let local users obtain root access because of unsafe interaction with logrotate. For example, an attacker can exploit a race condition to insert a symlink from /var/log/groonga/htt...
SUSE-SU-2021:1453-1 Security update for cups
This update for cups fixes the following issues: - CVE-2021-25317: ownership of /var/log/cups could allow privilege escalation from lp user to root via symlink attacks bsc1184161...
CVE-2019-11675
The groonga-httpd package 6.1.5-1 for Debian sets the /var/log/groonga ownership to the groonga account, which might let local users obtain root access because of unsafe interaction with logrotate. For example, an attacker can exploit a race condition to insert a symlink from /var/log/groonga/htt...
Fedora Core 5 : sendmail-8.13.7-2.fc5.1 (2006-837)
Tue Jul 18 2006 Thomas Woerner 8.13.7-2.fc5.1 - using new syntax for access database 177566 - fixed failure message while shutting down sm-client 119429 resolution: stop sm-client before sendmail - fixed method to specify persistent queue runners 126760 - removed patch backup files from...