Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Slackware: 202110-11 Critical: CherryPy Remote Code Execution Vulnerability

gentoo
Calendar Grey August 23, 2006
Dist Gentoo Esm H88
Several localized elevation problems in Heimdal modules impact Gentoo users. Update promptly to address critical security vulnerabilities.
Certain Heimdal components, ftpd and rcp, are vulnerable to a local privilege escalation.

Summary

Gentoo Linux Security Advisory GLSA 200608-21 https://security.gentoo.org/ Severity: High Title: Heimdal: Multiple local privilege escalation vulnerabilities Date: August 23, 2006 Bugs: #143371 ID: 200608-21

Synopsis ======= Certain Heimdal components, ftpd and rcp, are vulnerable to a local privilege escalation.
Background ========= Heimdal is a free implementation of Kerberos 5.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-crypt/heimdal < 0.7.2-r3 >= 0.7.2-r3
========== The ftpd and rcp applications provided by Heimdal fail to check the return value of calls to seteuid().
Impact ===== A local attacker could exploit this vulnerability to ex...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity local escalation escalation issue Heimdal

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity local escalation escalation issue Heimdal

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here