It was discovered that libgssglue incorrectly handled the GSSAPI_MECH_CONF
environment variable when running a privileged binary. A local attacker could
exploit this to gain root privileges. (CVE-2011-2709)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 12.04 | noarch | libgssglue1 | < 0.3-4ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | libgssglue-dev | < 0.3-4ubuntu0.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libgssglue1 | < 0.3-1ubuntu1.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libgssglue-dev | < 0.3-1ubuntu1.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libgssglue1 | < 0.1-4ubuntu1.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libgssglue-dev | < 0.1-4ubuntu1.1 | UNKNOWN |
Ubuntu | 10.04 | noarch | libgssglue1 | < 0.1-4ubuntu0.1 | UNKNOWN |
Ubuntu | 10.04 | noarch | libgssglue-dev | < 0.1-4ubuntu0.1 | UNKNOWN |