SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   logrotate Vendors:   [Multiple Authors/Vendors]
logrotate Bugs Lets Local Users Gain Elevated Privileges and Cause Denial of Service Conditions
SecurityTracker Alert ID:  1025274
SecurityTracker URL:  http://securitytracker.com/id/1025274
CVE Reference:   CVE-2011-1098, CVE-2011-1548, CVE-2011-1549, CVE-2011-1550, CVE-2011-1154, CVE-2011-1155   (Links to External Site)
Date:  Mar 31 2011
Impact:   Denial of service via local system, User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.7.9 and prior versions
Description:   Several vulnerabilities were reported in logrotate. A local user can obtain elevated privileges on the target system. A local user can cause denial of service conditions.

A local user can exploit a race condition in the createOutputFile() function in 'logrotate.c' to read log data [CVE-2011-1098].

A local user can conduct a symlink and hard link attack to potentially gain elevated privileges [CVE-2011-1548]. The default configuration on Debian GNU/Linux is affected.

A local user can conduct a symlink and hard link attack to potentially gain elevated privileges [CVE-2011-1549]. The default configuration on Gentoo Linux is affected.

A local user can conduct a symlink and hard link attack to potentially gain elevated privileges [CVE-2011-1550]. The default configuration on SUSE openSUSE Factory is affected.

A local user can create a specially crafted log filename to cause the shred_file() function in 'logrotate.c' to execute arbitrary commands on the target system [CVE-2011-1154].

A local user can create a specially crafted log filename to trigger a denial of service condition in the writeState() function in 'logrotate.c' [CVE-2011-1155].

Stefan Fritsch of the Debian Security Team reported these vulnerabilities.

Impact:   A local user can obtain elevated privileges on the target system.

A local user can cause denial of service conditions on the target system.

Solution:   Individual operating system distributions are issuing fixes.
Cause:   Access control error, Input validation error, State error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Mar 31 2011 (Red Hat Issues Fix) logrotate Bugs Lets Local Users Gain Elevated Privileges and Cause Denial of Service Conditions
Red Hat has issued a fix for Red Hat Enterprise Linux 6.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC