Lucene search
FedoraFEDORA:9AB92110F37HistoryMay 28, 2010 - 5:55 p.m.
[SECURITY] Fedora 13 Update: mod_auth_shadow-2.2-8.fc13
2010-05-2817:55:38
lists.fedoraproject.org
7
0.004 Low
EPSS
Percentile
72.7%
When performing this task one encounters one fundamental difficulty: The /etc/shadow file is supposed to be read/writeable only by root. However, the webserver is supposed to run under a non-root user, such as “nobody”. mod_auth_shadow addresses this difficulty by opening a pipe to an suid root program, validate, which does the actual validation. When there is a failure, validate writes an error message to the system log, and waits three seconds before exiting.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Fedora | 13 | any | mod_auth_shadow | < 2.2 | UNKNOWN |
Related
cve
cve
CVE-2010-1151
2010-04-20 16:30:00
nessus
nessus
Fedora 11 : mod_auth_shadow-2.2-8.fc11 (2010-6323)
2010-07-01 00:00:00
Fedora 13 : mod_auth_shadow-2.2-8.fc13 (2010-6290)
2010-07-01 00:00:00
Fedora 12 : mod_auth_shadow-2.2-8.fc12 (2010-6359)
2010-07-01 00:00:00
openvas
openvas
Mandriva Update for glibc MDVA-2010:081 (glibc)
2010-03-02 00:00:00
Fedora Update for mod_auth_shadow FEDORA-2010-6323
2010-05-17 00:00:00
Mandriva Update for glibc MDVA-2010:081 (glibc)
2010-03-02 00:00:00
nvd
nvd
CVE-2010-1151
2010-04-20 16:30:00
securityvulns
securityvulns
[ MDVSA-2010:081 ] apache-mod_auth_shadow
2010-04-26 00:00:00
Apache mod_auth_shadow authentication bypass
2010-04-26 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: mod_auth_shadow-2.2-8.fc11
2010-05-13 19:25:52
[SECURITY] Fedora 12 Update: mod_auth_shadow-2.2-8.fc12
2010-05-13 19:28:11
cvelist
cvelist
CVE-2010-1151
2010-04-20 16:00:00
prion
prion
Race condition
2010-04-20 16:30:00
ubuntucve
ubuntucve
CVE-2010-1151
2010-04-20 00:00:00