stable

incron-0.5.5-2.el5

FEDORA-EPEL-2009-0598 created by till 16 years ago for Fedora EPEL 5

This update addresses CVE-2009-3589 with a patch to initialize the supplementary groups of processes that are run from user incrontabs. Without it, these processes run with the supplementary groups from the incrond process. These groups might include the group disk, e.g. when the incrond process was started using "service incrond start". Then the users allowed to create a incrontab table could access raw disk contents. There might also be other ways to exploit this vulnerability.

This update has been pushed to testing

16 years ago
User Icon till commented 16 years ago

This update has been submitted for testing

This update has been pushed to testing

16 years ago
User Icon till commented 16 years ago

This update has been submitted for testing

User Icon till commented 16 years ago

This update has been submitted for stable

This update has been pushed to stable

16 years ago

Please log in to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
16 years ago
in testing
16 years ago
in stable
16 years ago
modified
16 years ago
Builds
1
incron-0.5.5-2.el5
incron-0.5.5-2.el5

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-20-v5tqb.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy