oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE id request: masqmail

From: Nico Golde <oss-security+ml () ngolde de>
Date: Wed, 7 Sep 2011 15:30:58 +0200
Hi,
a misuse of the seteuid function from glibc prevents masqmail from properly 
dropping root privileges.
References:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=638002
http://article.gmane.org/gmane.mail.masqmail/303

Can you assign a CVE id to this?

Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: _bin
Description:

Previous By Date Next
Previous By Thread Next

Current thread: