stable

incron-0.5.5-2.el5

FEDORA-EPEL-2009-0598 created by till 14 years ago for Fedora EPEL 5

This update addresses CVE-2009-3589 with a patch to initialize the supplementary groups of processes that are run from user incrontabs. Without it, these processes run with the supplementary groups from the incrond process. These groups might include the group disk, e.g. when the incrond process was started using "service incrond start". Then the users allowed to create a incrontab table could access raw disk contents. There might also be other ways to exploit this vulnerability.

This update has been pushed to testing

14 years ago

This update has been submitted for testing

This update has been pushed to testing

14 years ago

This update has been submitted for testing

This update has been submitted for stable

This update has been pushed to stable

14 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
14 years ago
in testing
14 years ago
in stable
14 years ago
modified
14 years ago

Automated Test Results