| Description: | Description:
The remote host is missing an update to logrotate
announced via advisory MDVSA-2011:065.
Multiple vulnerabilities were discovered and corrected in logrotate:
Race condition in the createOutputFile function in logrotate.c in
logrotate 3.7.9 and earlier allows local users to read log data
by opening a file before the intended permissions are in place
(CVE-2011-1098).
The shred_file function in logrotate.c in logrotate 3.7.9 and earlier
might allow context-dependent attackers to execute arbitrary commands
via shell metacharacters in a log filename, as demonstrated by a
filename that is automatically constructed on the basis of a hostname
or virtual machine name (CVE-2011-1154).
The writeState function in logrotate.c in logrotate 3.7.9 and earlier
might allow context-dependent attackers to cause a denial of service
(rotation outage) via a (1) \n (newline) or (2) \ (backslash)
character in a log filename, as demonstrated by a filename that
is automatically constructed on the basis of a hostname or virtual
machine name (CVE-2011-1155).
Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490
The updated packages have been upgraded to the 3.7.9 version and
patched to correct these issues.
Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0
Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:065
Risk factor : High
CVSS Score:
6.9
|
