Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Gentoo: GLSA 200907-13 High: PulseAudio Local Privilege Escalation

gentoo
Calendar Grey July 16, 2009
Dist Gentoo Esm H88
An urgent notification regarding high-risk vulnerabilities in PulseAudio, specifically detailing the potential for local privilege escalation on Gentoo operating systems.
A vulnerability in PulseAudio may allow a local user to execute code with escalated privileges.

Summary

Gentoo Linux Security Advisory GLSA 200907-13 https://security.gentoo.org/ Severity: High Title: PulseAudio: Local privilege escalation Date: July 16, 2009 Bugs: #276986 ID: 200907-13

Synopsis ======= A vulnerability in PulseAudio may allow a local user to execute code with escalated privileges.
Background ========= PulseAudio is a network-enabled sound server with an advanced plug-in system.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-sound/pulseaudio < 0.9.9-r54 >= 0.9.9-r54
========== Tavis Ormandy and Julien Tinnes of the Google Security Team discovered that the pulseaudio binary is installed setuid root, and does not drop privileges before re-executing...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory high severity gentoo local privilege escalation pulseaudio

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns


Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3373482_4c9dbbdde36eef04251a4ced7eac4df9 on line 11

Topics%20covered

Topics Covered

security advisory high severity gentoo local privilege escalation pulseaudio

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here