Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Red Hat Enterprise Linux 5: RHSA-2009:1642-02 Critical Acpid Issue

red hat
Calendar Grey December 7, 2009
Dist Redhat Esm H88
The recent upgrade of the acpid package in Red Hat Enterprise Linux tackles significant security vulnerabilities. This update introduces corrections for permission-related shortcomings.
An updated acpid package that fixes one security issue is now available for Red Hat Enterprise Linux 5

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

Summary

acpid is a daemon that dispatches ACPI (Advanced Configuration and Power Interface) events to user-space programs.
It was discovered that acpid could create its log file ("/var/log/acpid") with random permissions on some systems. A local attacker could use this flaw to escalate their privileges if the log file was created as world-writable and with the setuid or setgid bit set. (CVE-2009-4033)
Please note that this flaw was due to a Red Hat-specific patch (acpid-1.0.4-fd.patch) included in the Red Hat Enterprise Linux 5 acpid package.
Users are advised to upgrade to this updated package, which contains a backported patch to correct this issue.

Topics%20covered

Topics Covered

security advisory Red Hat Enterprise Linux important patch acpid update log permission flaw

References

https://www.cve.org/CVERecord?id=CVE-2009-4033 https://access.redhat.com/security/updates/classification#important

Package List

Red Hat Enterprise Linux Desktop (v. 5 client):
Source:
i386: acpid-1.0.4-9.el5_4.1.i386.rpm acpid-debuginfo-1.0.4-9.el5_4.1.i386.rpm
x86_64: acpid-1.0.4-9.el5_4.1.x86_64.rpm acpid-debuginfo-1.0.4-9.el5_4.1.x86_64.rpm
Red Hat Enterprise Linux (v. 5 server):
Source:
i386: acpid-1.0.4-9.el5_4.1.i386.rpm acpid-debuginfo-1.0.4-9.el5_4.1.i386.rpm
ia64: acpid-1.0.4-9.el5_4.1.ia64.rpm acpid-debuginfo-1.0.4-9.el5_4.1.ia64.rpm
x86_64: acpid-1.0.4-9.el5_4.1.x86_64.rpm acpid-debuginfo-1.0.4-9.el5_4.1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package


Severity
important
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2009:1642-02
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2009:1642.html
Issue date: 2009-12-07

Topic

An updated acpid package that fixes one security issue is now available forRed Hat Enterprise Linux 5.This update has been rated as having important security impact by the RedHat Security Response Team.

Topics%20covered

Topics Covered

security advisory Red Hat Enterprise Linux important patch acpid update log permission flaw

Relevant Releases Architectures

Red Hat Enterprise Linux (v. 5 server) - i386, ia64, x86_64

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

Bugs Fixed

515062 - /var/log/acpid has improper permissions

542926 - CVE-2009-4033 acpid: log file created with random permissions

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here