Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

SuSE Essential and Critical Security Patch Updates - Page 1162

Find the information you need for your favorite open source distribution .

SuSE: Critical i4l (xmonisdn) Privilege Escalation Risk

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

xmonisdn which is part of the i4l package is installed setuid root by default. To control and display the status of the ISDN network connections xmonisdn uses external programs, which are executed by the system() systemcall, without taking care of a safe environment. The problem arises by old libc, that don't overwrite the IFS environment variable.

Your message here