67 matches found
CVE-2007-5686
CVE-2007-5686 affects initscripts on rPath Linux 1. It sets insecure permissions on /var/log/btmp, allowing local users to read sensitive information about authentication attempts. The advisory notes that sshd logging of failed remote authentication attempts may also be affected because SSHD dete...
rPSA-2007-0214-1 initscripts
rPath Security Advisory: 2007-0214-1 Published: 2007-10-11 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Information Exposure Updated Versions: initscripts=conary.rpath.com@rpl:1/8.12-8.10-1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-1825...
rPSA-2007-0212-1 util-linux
rPath Security Advisory: 2007-0212-1 Published: 2007-10-08 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: util-linux=/conary.rpath.com@rpl:devel//1/2.12r-1.5-1 rPath Issue Tracking System:...
rPSA-2007-0203-1 rmake rmake-proxy rmake-repos
rPath Security Advisory: 2007-0203-1 Published: 2007-10-02 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: rmake=/conary.rpath.com@rpl:devel//1/1.0.11.1-2-0.1...
[Full-disclosure] rPSA-2007-0183-1 lighttpd
rPath Security Advisory: 2007-0183-1 Published: 2007-09-14 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote System User Deterministic Unauthorized Access Updated Versions: lighttpd=/conary.rpath.com@rpl:devel//1/1.4.18-0.1-1 References:...
OpenSSH X11 Cookie本地验证绕过漏洞
OpenSSH是一款开放源码的SSH协议的实现。 OpenSSH不正确管理可信和不可信X11 COOKIE,本地攻击者可以利用漏洞绕过验证启动转发的X11会话。 目前没有详细漏洞细节提供。 rPath rPath Linux 1 OpenSSH OpenSSH 4.6 GNOME gnome-ssh-askpass 0 Gentoo Linux 2007.0 升级到最新程序: http://www.openssh.com/txt/release-4.7...
[Full-disclosure] rPSA-2007-0182-1 httpd mod_ssl
rPath Security Advisory: 2007-0182-1 Published: 2007-09-14 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote System User Deterministic Denial of Service Updated Versions: httpd=/conary.rpath.com@rpl:devel//1-devel/2.0.61-0.1-1...
rPSA-2007-0178-1 fetchmail
rPath Security Advisory: 2007-0178-1 Published: 2007-09-05 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Non-deterministic Denial of Service Updated Versions: fetchmail=/conary.rpath.com@rpl:devel//1/6.3.8-0.3-1 References: https://vulners.com/cve/CVE-2007-456...
rPSA-2007-0155-1 openssl openssl-scripts
rPath Security Advisory: 2007-0155-1 Published: 2007-08-10 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local System User Non-deterministic Information Exposure Updated Versions: openssl=/conary.rpath.com@rpl:devel//1/0.9.7f-10.7-1...
rPSA-2007-0153-1 qt-x11-free
rPath Security Advisory: 2007-0153-1 Published: 2007-08-01 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: qt-x11-free=/conary.rpath.com@rpl:devel//1/3.3.4-5.9-1 References: https://vulners.com/cve/CVE-2007-338...
[Full-disclosure] rPSA-2007-0119-1 spamassassin
rPath Security Advisory: 2007-0119-1 Published: 2007-06-13 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Denial of Service Updated Versions: spamassassin=/conary.rpath.com@rpl:devel//1/3.2.1-0.1-1 References: https://vulners.com/cve/CVE-2007-2873...
rPSA-2007-0115-1 libexif
rPath Security Advisory: 2007-0115-1 Published: 2007-06-04 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Denial of Service Updated Versions: libexif=/conary.rpath.com@rpl:devel//1/0.6.15-0.1-1 References: https://vulners.com/cve/CVE-2007-2645...
rPSA-2007-0090-1 gimp
rPath Security Advisory: 2007-0090-1 Published: 2007-05-03 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: gimp=/conary.rpath.com@rpl:devel//1/2.2.8-8.3-1 References: https://vulners.com/cve/CVE-2007-2356...
rPSA-2007-0074-1 dovecot
rPath Security Advisory: 2007-0074-1 Published: 2007-04-18 Products: rPath Linux 1 Rating: Informational Exposure Level Classification: Local User Deterministic Information Exposure Updated Versions: dovecot=/conary.rpath.com@rpl:devel//1/1.0.0-0.1-1 References:...
rPath Linux rMake multiple security vulneraiblities
No description provided...
rPSA-2007-0021-1 bind bind-utils
rPath Security Advisory: 2007-0021-1 Published: 2007-01-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: bind=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 bind-utils=/conary.rpath.com@rpl:devel//1/9.3.4-0.1-1 Reference...
Design/Logic Flaw
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges...
CVE-2007-0536
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges...
CVE-2007-0536
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges...
CVE-2007-0536
The CVE-2007-0536 issue affects rPath Linux 1: the rMake chroot helper fails to drop supplemental groups, causing packages to be installed with insecure permissions and potentially enabling local privilege escalation. Root cause: missing drop of supplemental groups in the chroot helper. Impact: l...