Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA 200808-12 High: Postfix Local Escalation Threat

gentoo
Calendar Grey August 15, 2008
Dist Gentoo Esm H88
The Gentoo Security Advisory GLSA 200808-12 reveals vulnerabilities in Postfix, highlighting potential risks for local privilege escalation along with recommended resolutions.
Postfix incorrectly checks the ownership of a mailbox, allowing, in certain circumstances, to append data to arbitrary files on a local system with root privileges

Summary

Gentoo Linux Security Advisory GLSA 200808-12 https://security.gentoo.org/ Severity: High Title: Postfix: Local privilege escalation vulnerability Date: August 14, 2008 Bugs: #232642 ID: 200808-12

Synopsis ======= Postfix incorrectly checks the ownership of a mailbox, allowing, in certain circumstances, to append data to arbitrary files on a local system with root privileges.
Background ========= Postfix is Wietse Venema's mailer that attempts to be fast, easy to administer, and secure, as an alternative to the widely-used Sendmail program.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected -------------------------------------------------------...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity local escalation Postfix mail delivery insecure ownership

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity local escalation Postfix mail delivery insecure ownership

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here