aru Posted June 25, 2006 Report Share Posted June 25, 2006 Mandriva Advisories MDKSA-2006:107 : arts Updated arts packages fix vulnerability in artswrapper June 20th, 2006 A vulnerability in the artswrapper program, when installed setuid root, could enable a local user to elevate their privileges to that of root. By default, Mandriva Linux does not ship artswrapper setuid root, however if a user or system administrator enables the setuid bit on artswrapper, their system could be at risk, The updated packages have been patched to correct these issues. The released versions of Mandriva GNU/Linux affected are: CS3.0 2006.0 Full information about this advisory, including the updated packages, is available at: www.mandriva.com/security/advisories?name=MDKSA-2006:107 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2916 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 1.2 2006/06/01 20:04:28 pituko Exp $) Link to comment Share on other sites More sharing options...
Recommended Posts