oss-sec mailing list archives
CVE request: init script x11-common creates directories in insecure manners
From: vladz <vladz () devzero fr>
Date: Tue, 28 Feb 2012 18:55:23 +0100
Hi, I've reported a small vulnerability to Debian. Due to an insecure file creation, a local user can gain root privileges right after the "x11-common" service is started. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661627 Could you allocate CVE id for this issue? Thank you, vladz.
Current thread:
- CVE request: init script x11-common creates directories in insecure manners vladz (Feb 28)
- Re: CVE request: init script x11-common creates directories in insecure manners Kurt Seifried (Feb 28)
- Re: CVE request: init script x11-common creates directories in insecure manners vladz (Mar 01)
- Re: CVE request: init script x11-common creates directories in insecure manners Jason A. Donenfeld (Mar 01)
- Re: CVE request: init script x11-common creates directories in insecure manners vladz (Mar 01)
- Re: CVE request: init script x11-common creates directories in insecure manners Kurt Seifried (Feb 28)