Main Vulnerability Database SB2011012403

SB2011012403 - Multiple vulnerabilities in git.kernel linux-pam

Published: January 24, 2011 Updated: August 11, 2020

Security Bulletin ID SB2011012403

Severity

Medium

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Input validation error (CVE-ID: CVE-2010-3430)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not perform the required setfsgid and setgroups system calls, which might allow local users to obtain sensitive information by leveraging unintended group permissions, as demonstrated by a symlink attack on the .pam_environment file in a user's home directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-3435.

2) Input validation error (CVE-ID: CVE-2010-3431)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not check the return value of the setfsuid system call, which might allow local users to obtain sensitive information by leveraging an unintended uid, as demonstrated by a symlink attack on the .pam_environment file in a user's home directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-3435.

Remediation

Install update from vendor's website.

SB2011012403 - Multiple vulnerabilities in git.kernel linux-pam

Breakdown by Severity

Description

Remediation

References

Please verify you're human