Slackware Local Security Checks : Slackware: Security Advisory (SSA:2009-111-02)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.13.2009.111.02

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2009-111-02)

Resumen: The remote host is missing an update for the 'udev' package(s) announced via the SSA:2009-111-02 advisory.

Descripción: Summary:
The remote host is missing an update for the 'udev' package(s) announced via the SSA:2009-111-02 advisory.

Vulnerability Insight:
Updated udev packages are available for Slackware 12.2, and -current to fix
a serial device ownership regression in 12.2, adjust the perms on /dev/rtc0,
and make sure that the /dev/root symlink is properly created.

Here are the details from the Slackware 12.2 ChangeLog:
+--------------------------+
patches/packages/udev-141-i486-2_slack12.2.tgz:
Fixed a regression with serial/dialout device ownership.
Slackware 12.2 uses the 'uucp' group for these devices, but the newer
version of udev has changed them to 'dialout', leading to log errors and
an incorrect group ownership for serial devices since the 'dialout' group
does not exist on Slackware 12.2.
This update changes the serial device group ownership back to 'uucp'.
Thanks to Alexander Pravdin for the fast bug report.
Changed the permissions on the real time clock (/dev/rtc0) so that all
users can read it.
Modified rc.udev so that the /dev/root symlink is created.
Thanks to Piter Punk!
+--------------------------+

Here are the details from the Slackware -current ChangeLog:
+--------------------------+
a/udev-141-i486-2.tgz: Changed the permissions on the real time clock
(/dev/rtc0) so that all users can read it.
Modified rc.udev so that the /dev/root symlink is created.
Thanks to Piter Punk!
+--------------------------+

Affected Software/OS:
'udev' package(s) on Slackware 12.2, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2009.111.02
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2009-111-02)
Resumen:	The remote host is missing an update for the 'udev' package(s) announced via the SSA:2009-111-02 advisory.
Descripción:	Summary: The remote host is missing an update for the 'udev' package(s) announced via the SSA:2009-111-02 advisory. Vulnerability Insight: Updated udev packages are available for Slackware 12.2, and -current to fix a serial device ownership regression in 12.2, adjust the perms on /dev/rtc0, and make sure that the /dev/root symlink is properly created. Here are the details from the Slackware 12.2 ChangeLog: +--------------------------+ patches/packages/udev-141-i486-2_slack12.2.tgz: Fixed a regression with serial/dialout device ownership. Slackware 12.2 uses the 'uucp' group for these devices, but the newer version of udev has changed them to 'dialout', leading to log errors and an incorrect group ownership for serial devices since the 'dialout' group does not exist on Slackware 12.2. This update changes the serial device group ownership back to 'uucp'. Thanks to Alexander Pravdin for the fast bug report. Changed the permissions on the real time clock (/dev/rtc0) so that all users can read it. Modified rc.udev so that the /dev/root symlink is created. Thanks to Piter Punk! +--------------------------+ Here are the details from the Slackware -current ChangeLog: +--------------------------+ a/udev-141-i486-2.tgz: Changed the permissions on the real time clock (/dev/rtc0) so that all users can read it. Modified rc.udev so that the /dev/root symlink is created. Thanks to Piter Punk! +--------------------------+ Affected Software/OS: 'udev' package(s) on Slackware 12.2, Slackware current. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Copyright	Copyright (C) 2022 Greenbone AG