Описание
ELSA-2011-0324: logwatch security update (IMPORTANT)
[7.3.6-49]
- Added fix for CVE-2011-1018: Privilege escalation due improper sanitization of special characters in log file names Resolves: #680304
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
logwatch
7.3-9.el5_6
Oracle Linux x86_64
logwatch
7.3-9.el5_6
Oracle Linux i386
logwatch
7.3-9.el5_6
Oracle Linux 6
Oracle Linux x86_64
logwatch
7.3.6-49.el6
Oracle Linux i686
logwatch
7.3.6-49.el6
Связанные CVE
Связанные уязвимости
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbit ...
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.