Lucene search
Ubuntu.comUB:CVE-2011-1548HistoryMar 30, 2011 - 12:00 a.m.
CVE-2011-1548
2011-03-3000:00:00
ubuntu.com
ubuntu.com
15
CVSS2
6.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
EPSS
0.001
Percentile
17.0%
The default configuration of logrotate on Debian GNU/Linux uses root
privileges to process files in directories that permit non-root write
access, which allows local users to conduct symlink and hard link attacks
by leveraging logrotateβs lack of support for untrusted directories, as
demonstrated by /var/log/postgresql/.
Bugs
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606544>
- <https://bugzilla.redhat.com/show_bug.cgi?id=680799>
Notes
| Author | Note |
|---|---|
| mdeslaur | looks like issue #9, adding RH bug upstream patch adds βsuβ option variable, and probably breaks backwards compatibility RH proposed patch for CVE-2011-1098 may fix it in a backwards-compatible way pretty much fixed by nofollow.patch and security-388608.patch in lucid+ |
References
Related
openvas
openvas
Ubuntu Update for logrotate USN-1172-1
2011-07-22 00:00:00
Ubuntu: Security Advisory (USN-1172-1)
2011-07-22 00:00:00
Mandriva Update for logrotate MDVSA-2011:065 (logrotate)
2011-04-11 00:00:00
securityvulns
securityvulns
logrotate multiple security vulnerabilities
2011-07-26 00:00:00
[USN-1172-1] logrotate vulnerabilities
2011-07-26 00:00:00
[ MDVSA-2011:065 ] logrotate
2011-04-06 00:00:00
ubuntu
ubuntu
logrotate vulnerabilities
2011-07-21 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 : logrotate vulnerabilities (USN-1172-1)
2011-07-22 00:00:00
F5 Networks BIG-IP : logrotate vulnerability (SOL16869)
2015-09-14 00:00:00
SuSE 10 Security Update : logrotate (ZYPP Patch Number 7533)
2011-12-13 00:00:00
debiancve
debiancve
CVE-2011-1098
2011-03-30 22:55:02
CVE-2011-1548
2011-03-30 22:55:02
f5
f5
K16869 : logrotate vulnerability CVE-2011-1098
2015-09-11 00:00:00
SOL16869 - logrotate vulnerability CVE-2011-1098
2015-07-07 00:00:00
prion
prion
Race condition
2011-03-30 22:55:00
Default configuration
2011-03-30 22:55:00
nvd
nvd
CVE-2011-1098
2011-03-30 22:55:02
CVE-2011-1548
2011-03-30 22:55:02
cvelist
cvelist
CVE-2011-1098
2011-03-30 22:00:00
CVE-2011-1548
2011-03-30 22:00:00
ubuntucve
ubuntucve
cve
cve
CVE-2011-1098
2011-03-30 22:55:02
CVE-2011-1548
2011-03-30 22:55:02
fedora
fedora
[SECURITY] Fedora 15 Update: logrotate-3.7.9-8.fc15
2011-03-29 04:00:10
[SECURITY] Fedora 14 Update: logrotate-3.7.9-2.fc14
2011-04-11 20:59:43
redhat
redhat
(RHSA-2011:0407) Moderate: logrotate security update
2011-03-31 00:00:00
oraclelinux
oraclelinux
logrotate security update
2011-03-31 00:00:00
seebug
seebug
Red Hat Enterprise Linux logrotateδ»»ζζ§θ‘ε½δ»€εδΏ‘ζ―ζ³ι²ζΌζ΄
2011-04-02 00:00:00
gentoo
gentoo
logrotate: Multiple vulnerabilities
2012-06-25 00:00:00
CVSS2
6.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
EPSS
0.001
Percentile
17.0%
Related for UB:CVE-2011-1548