Описание
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 0.25.4-2ubuntu3 |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | released | 0.24.8-2ubuntu4.1 |
| lucid | not-affected | 0.25.4-2ubuntu3 |
| maverick | not-affected | 0.25.4-2ubuntu3 |
| natty | not-affected | 0.25.4-2ubuntu3 |
| oneiric | not-affected | 0.25.4-2ubuntu3 |
Показывать по
4.7 Medium
CVSS2
Связанные уязвимости
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files.
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files.
puppetmasterd in puppet 0.24.6 does not reset supplementary groups whe ...
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files.
Уязвимости операционной системы Gentoo Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
4.7 Medium
CVSS2