EUVD-2008-0228

Malware in sbrugna...

FreeBSD Security Advisory (FreeBSD-SA-08:01.pty.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-08:01.pty.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2008-0216

The ptsname function in FreeBSD 6.0 through 7.0-PRERELEASE does not properly verify that a certain portion of a device name is associated with a pty of a user who is calling the ptchown function, which might allow local users to read data from the pty from another user...

CVE-2008-0216

The ptsname function in FreeBSD 6.0 through 7.0-PRERELEASE does not properly verify that a certain portion of a device name is associated with a pty of a user who is calling the ptchown function, which might allow local users to read data from the pty from another user...

CVE-2008-0216

CVE-2008-0216 describes a local-privilege/snooping flaw in FreeBSD where the ptsname and openpty handling could let a non-privileged user read or own a pty belonging to another user. The issue arises because ptsname(3) could extract two characters from a /dev name without ensuring ownership, and ...

CVE-2008-0216

The ptsname function in FreeBSD 6.0 through 7.0-PRERELEASE does not properly verify that a certain portion of a device name is associated with a pty of a user who is calling the ptchown function, which might allow local users to read data from the pty from another user...

FreeBSD-SA-08:01.pty

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-08:01.pty Security Advisory The FreeBSD Project Topic: pty snooping Category: core Module: libcstdlib / libutil Announced: 2008-01-14 Credits: John Baldwin...