Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo GLSA-202310-15 Important: Python-Script Privilege Escalation

gentoo
Calendar Grey May 27, 2008
Dist Gentoo Esm H88
A critical security advisory for Gentoo Linux highlights a permission bypass vulnerability in Roundup, urging swift upgrades to secure systems against unauthorized access.
A vulnerability in Roundup allows for bypassing permission restrictions.

Summary

Gentoo Linux Security Advisory GLSA 200805-21 https://security.gentoo.org/ Severity: Normal Title: Roundup: Permission bypass Date: May 27, 2008 Bugs: #212488, #214666 ID: 200805-21

Synopsis ======= A vulnerability in Roundup allows for bypassing permission restrictions.
Background ========= Roundup is an issue-tracking system with command-line, web and e-mail interfaces.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/roundup < 1.4.4-r1 >= 1.4.4-r1
========== Philipp Gortan reported that the xml-rpc server in Roundup does not check property permissions (CVE-2008-1475). Furthermore, Roland Meister discovered multiple vulnerabilities caused by unspeci...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo remote exploit xml-rpc normal severity permission bypass Roundup

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
important
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory Gentoo remote exploit xml-rpc normal severity permission bypass Roundup

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here