ID de Prueba:	1.3.6.1.4.1.25623.1.0.870680
Categoría:	Red Hat Local Security Checks
Título:	RedHat Update for libcgroup RHSA-2011:0320-01
Resumen:	The remote host is missing an update for the 'libcgroup'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'libcgroup' package(s) announced via the referenced advisory. Vulnerability Insight: The libcgroup packages provide tools and libraries to control and monitor control groups. A heap-based buffer overflow flaw was found in the way libcgroup converted a list of user-provided controllers for a particular task into an array of strings. A local attacker could use this flaw to escalate their privileges via a specially-crafted list of controllers. (CVE-2011-1006) It was discovered that libcgroup did not properly check the origin of Netlink messages. A local attacker could use this flaw to send crafted Netlink messages to the cgrulesengd daemon, causing it to put processes into one or more existing control groups, based on the attacker's choosing, possibly allowing the particular tasks to run with more resources (memory, CPU, etc.) than originally intended. (CVE-2011-1022) Red Hat would like to thank Nelson Elhage for reporting the CVE-2011-1006 issue. All libcgroup users should upgrade to these updated packages, which contain backported patches to correct these issues. Affected Software/OS: libcgroup on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1006 1025158 http://www.securitytracker.com/id?1025158 43611 http://secunia.com/advisories/43611 43758 http://secunia.com/advisories/43758 43891 http://secunia.com/advisories/43891 44093 http://secunia.com/advisories/44093 46729 http://www.securityfocus.com/bid/46729 ADV-2011-0679 http://www.vupen.com/english/advisories/2011/0679 ADV-2011-0774 http://www.vupen.com/english/advisories/2011/0774 DSA-2193 http://www.debian.org/security/2011/dsa-2193 FEDORA-2011-2631 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056683.html FEDORA-2011-2638 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056734.html RHSA-2011:0320 http://www.redhat.com/support/errata/RHSA-2011-0320.html http://libcg.git.sourceforge.net/git/gitweb.cgi?p=libcg/libcg%3Ba=commit%3Bh=5ae8aea1ecd60c439121d3329d8eaabf13d292c1 http://sourceforge.net/projects/libcg/files/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2/download https://bugzilla.redhat.com/show_bug.cgi?id=678107 openSUSE-SU-2011:0316 http://lists.opensuse.org/opensuse-updates/2011-04/msg00027.html Common Vulnerability Exposure (CVE) ID: CVE-2011-1022 1025157 http://www.securitytracker.com/id?1025157 46578 http://www.securityfocus.com/bid/46578 [libcg-devel] 20101115 Fwd: libcgroup netlink http://sourceforge.net/mailarchive/message.php?msg_id=26598749 [libcg-devel] 20110218 [PATCH 2/2] cgrulesengd: Ignore netlink messages that don't come from the kernel. http://sourceforge.net/mailarchive/message.php?msg_id=27102603 [oss-security] 20110224 CVE request: libcgroup: Failure to verify netlink messages http://openwall.com/lists/oss-security/2011/02/25/6 [oss-security] 20110225 Re: CVE request: libcgroup: Failure to verify netlink messages http://openwall.com/lists/oss-security/2011/02/25/11 http://openwall.com/lists/oss-security/2011/02/25/12 http://openwall.com/lists/oss-security/2011/02/25/14 http://openwall.com/lists/oss-security/2011/02/25/9 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615987 https://bugzilla.redhat.com/show_bug.cgi?id=680409
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.