CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
13.2%
CentOS Errata and Security Advisory CESA-2006:0612
Kerberos is a network authentication system which allows clients and
servers to authenticate to each other through use of symmetric encryption
and a trusted third party, the KDC.
A flaw was found where some bundled Kerberos-aware applications would fail
to check the result of the setuid() call. On Linux 2.6 kernels, the
setuid() call can fail if certain user limits are hit. A local attacker
could manipulate their environment in such a way to get the applications to
continue to run as root, potentially leading to an escalation of
privileges. (CVE-2006-3083).
Users are advised to update to these erratum packages which contain a
backported fix to correct this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-August/075291.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075292.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075293.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075295.html
https://lists.centos.org/pipermail/centos-announce/2006-August/075296.html
Affected packages:
krb5-devel
krb5-libs
krb5-server
krb5-workstation
Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0612
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | ia64 | krb5-devel | < 1.3.4-33 | krb5-devel-1.3.4-33.ia64.rpm |
CentOS | 4 | ia64 | krb5-libs | < 1.3.4-33 | krb5-libs-1.3.4-33.ia64.rpm |
CentOS | 4 | ia64 | krb5-server | < 1.3.4-33 | krb5-server-1.3.4-33.ia64.rpm |
CentOS | 4 | ia64 | krb5-workstation | < 1.3.4-33 | krb5-workstation-1.3.4-33.ia64.rpm |
CentOS | 4 | alpha | krb5-devel | < 1.3.4-33 | krb5-devel-1.3.4-33.alpha.rpm |
CentOS | 4 | alpha | krb5-libs | < 1.3.4-33 | krb5-libs-1.3.4-33.alpha.rpm |
CentOS | 4 | alpha | krb5-server | < 1.3.4-33 | krb5-server-1.3.4-33.alpha.rpm |
CentOS | 4 | alpha | krb5-workstation | < 1.3.4-33 | krb5-workstation-1.3.4-33.alpha.rpm |
CentOS | 4 | s390 | krb5-devel | < 1.3.4-33 | krb5-devel-1.3.4-33.s390.rpm |
CentOS | 4 | s390 | krb5-libs | < 1.3.4-33 | krb5-libs-1.3.4-33.s390.rpm |