AnNyung Official Homepage Home > Update [ 1.2 ]  

HOME
What is AnNyung
Documents
Packages System
White Paper
Download
Update
  . 3.x [RSS]
  . 2.x [RSS]
  . 1.3 [RSS]
  . 1.2 [RSS]
  . 1.1 [RSS]
  . 1.0 [RSS]
FAQ
Hardware
RoadMap
Gallery

  Go oops.org
  AnNyung banner 88x31

  AnNyung 1 banner 80x15
  AnNyung 2 banner 80x15
  AnNyung 3 banner 80x15
  AnNyung banner 80x15
  AnNyung banner 80x15



util-linux 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.

문서번호 : 1129362107
업데이트 : 2005.10.15


상세내용

CAN-2001-1494:
script command in the util-linux package before 2.11n allows local users to
overwrite arbitrary files by setting a hardlink from the typescript log file
to any file on the system, then having root execute the script command.

CAN-2005-2876:
umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages
such as loop-aes-utils, allows local users with unmount permissions to gain
privileges via the -r (remount) option, which causes the file system to be
remounted with just the read-only flag, which effectively clears the nosuid,
nodev, and other flags.


Autoupdates 지원 : 지원


update 패키지

  RPMS :

    . util-linux-2.11y-31.11.i686.rpm
    . mount-2.11y-31.11.i686.rpm
    . losetup-2.11y-31.11.i686.rpm

  SRPMS :

    . util-linux-2.11y-31.11.src.rpm


참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-1494
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2876



    



 Home > Update [ 1.2 ]

Copyright 2024 OOPS Development Organization 
LAST MODIFIED: 2018/04/10