Computer Security
[EN] securityvulns.ru no-pyccku


rPath Linux rMake multiple security vulneraiblities
Published:02.02.2007
Source:
SecurityVulns ID:7156
Type:remote
Threat Level:
5/10
Affected:RMAKE : RMake 1.0
CVE:CVE-2007-0557 (rMake before 1.0.4 drops root privileges in a way that retains the original supplemental groups, which might allow attackers to gain privileges via a crafted recipe file, a different vulnerability than CVE-2007-0536.)
 CVE-2007-0536 (The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod