Sårbarhetslösningar |
||
| WatchMouse periodiska sårbarhetsskanning kontrollerar sårbarheten nedan. Om du vill se de senasta sårbarhetslösningarna som skannas av WatchMouse kan du gå till översikten med sårbarhetslösningar | ||
| Kategori: Gentoo Local Security Checks | Riskfaktor: High | Tillagt: 11 Oct 2008 |
| The remote host is affected by the vulnerability described in GLSA-200810-02 (Portage: Untrusted search path local root vulnerability) The Gentoo Security Team discovered that several ebuilds, such as sys-apps/portage, net-mail/fetchmail or app-editors/leo execute Python code using "python -c", which includes the current working directory in Python's module search path. For several ebuild functions, Portage did not change the working directory from emerge's working directory. Impact A local attacker could place a specially crafted Python module in a directory (such as /tmp) and entice the root user to run commands such as "emerge sys-apps/portage" from that directory, resulting in the execution of arbitrary Python code with root privileges. Workaround Do not run "emerge" from untrusted working directories. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4394 Solution: All Portage users should upgrade to the latest version: # cd /root # emerge --sync # emerge --ask --oneshot --verbose ">=sys-apps/portage-2.1.4.5" NOTE: To upgrade to Portage 2.1.4.5 using 2.1.4.4 or prior, you must run emerge from a trusted working directory, such as "/root". Risk factor: High |
||
