RSS   Vulnerabilities for 'Rpath linux'   RSS

2008-07-10
 
CVE-2008-3139

CWE-noinfo
 
 
The RTMPT dissector in Wireshark (formerly Ethereal) 0.99.8 through 1.0.0 allows remote attackers to cause a denial of service (crash) via unknown vectors. NOTE: this might be due to a use-after-free error.

 
 
CVE-2008-3138

CWE-noinfo
 
 
The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause a denial of service (application stop) via unknown vectors.

 
2008-02-28
 
CVE-2008-1078

CWE-59
 
 
expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite arbitrary files via a symlink attack on the expn[PID] temporary file. NOTE: this is the same issue as CVE-2003-0308.1.

 
2007-10-28
 
CVE-2007-5686

CWE-264
 
 
initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging failed authentication attempts by remote attackers.

 
2007-04-05
 
CVE-2007-1351

CWE-189
 
 
Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

 
2007-01-26
 
CVE-2007-0536

 
 
The chroot helper in rMake for rPath Linux 1 does not drop supplemental groups, which causes packages to be installed with insecure permissions and might allow local users to gain privileges.

 

 >>> Vendor: Rpath 5 Products
Linux
Rpath linux
Rmake
Appliance platform agent
Initscripts

Copyright 2024, cxsecurity.com

 

Back to Top