9 matches found
Lprng symbolic links problem
psbanner creates temporary file without checking symbolic links...
Low: Red Hat Security Advisory: LPRng security update
Updated LPRng packages resolving a temporary file vulnerability are now available. LPRng is a print spooler. LPRng includes a program, psbanner, that can be used to produce Postscript banner pages to separate print jobs. A vulnerability has been found in psbanner, which creates in an insecure...
CVE-2002-1275
Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input."...
CVE-2002-1275
Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input."...
Important: Red Hat Security Advisory: : LPRng fails to drop supplemental group membership
When LPRng drops uid and gid, it fails to drop membership in its supplemental groups. LPRng fails to drop supplemental group membership at init time, though it does properly setuid and setgid. The result is that LPRng, and its children, maintain any supplemental groups that the process starting...
Format strings: bug #2: LPRng
Hi, SUMMARY ------- LPRng is almost certainly vulnerable to remote-root compromise on account of a format string bug. The flaw is almost identical to the rpc.statd one I found; namely a faulty syslog wrapper. This is becoming a very common flaw. Details ------- Here is a code excerpt from:...
Linux news 10.07.00
Linux Kernel pre-patch 2.4.0 test3-pre7 Вышел очередной пререлиз третьего тестового ядра Linux Kernel 2.4.0. Подробнее: ftp://ftp.funet.fi/pub/linux/kernel/testing mutt 1.2.4 Вышла новая версия крутой консольной читалки и писалки почты. Подробнее: http://www.mutt.org/ Ошибка в BitchX Просто Bitch...
LPRng lpd should not be SETUID root
Well, even in spite of all of my efforts, care, and paranoia, I finally dropped the hammer on my foot. Luckily it appears that I spotted this loophole before somebody on the LPRng mailing list did. Or worse yet, got a call from CERT about this problem :- SUMMARY: Versions of...
LPRng.txt
Subject: Security problem with LPRng To: [email protected] Hi all, During some recent work I've been doing with LPRng, I found that is is possible on a default LPRng installation to control the print queues on the LPRng server. Most default installations allow the root user at the localhost to...