Oracle Linux 3 : shadow-utils (ELSA-2007-0431)

From Red Hat Security Advisory 2007:0431 : An updated shadow-utils package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The shadow-utils package includes the necessary programs for...

CentOS 4 : shadow-utils (CESA-2007:0276)

Updated shadow-utils packages that fix a security issue and various bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow...

Scientific Linux Security Update : shadow-utils on SL4.x i386/x86_64

A flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. CVE-2006-1174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C...

Scientific Linux Security Update : shadow-utils on SL3.x i386/x86_64

A flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. CVE-2006-1174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text is C...

CentOS 3 : shadow-utils (CESA-2007:0431)

An updated shadow-utils package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow...

RHEL 3 : shadow-utils (RHSA-2007:0431)

An updated shadow-utils package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow...

MDKSA-2006:090 : shadow-utils

A potential security problem was found in the useradd tool when it creates a new user's mailbox due to a missing argument to the open call, resulting in the first permissions of the file being some random garbage found on the stack, which could possibly be held open for reading or writing before...

Mandrake Linux Security Advisory : shadow-utils (MDKSA-2003:026)

The shadow-utils package contains the tool useradd, which is used to create or update new user information. When useradd creates an account, it would create it with improper permissions; instead of having it owned by the group mail, it would be owned by the user's primary group. If this is a shar...

RHEL 2.1 : shadow-utils (RHSA-2003:058)

Updated shadow-utils packages are now available. These updated packages correct a bug that caused the useradd tool to create mail spools with incorrect permissions. The shadow-utils package includes programs for converting UNIX password files to the shadow password format, plus programs for...

[RHSA-2003:057-06] Updated shadow-utils packages fix exposure

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated shadow-utils packages fix exposure Advisory ID: RHSA-2003:057-06 Issue date: 2003-02-12 Updated on: 2003-02-18 Product: Red Hat Linux Keywords: mail mailspool Cross...