Описание
ELSA-2009-0411: device-mapper-multipath security update (MODERATE)
[0.4.7-23.el5_3.2]
- Added 493401_multipathd_umask_fix.patch
- Resolves: bz #493401
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
device-mapper-multipath
0.4.7-23.el5_3.2
kpartx
0.4.7-23.el5_3.2
Oracle Linux i386
device-mapper-multipath
0.4.7-23.el5_3.2
kpartx
0.4.7-23.el5_3.2
Связанные CVE
Связанные уязвимости
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.
The Device Mapper multipathing driver (aka multipath-tools or device-m ...
The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon.