English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 102521 CVE descriptions
and 54701 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-8076
2011-06-10 12:42:03
--------------------------------------------------------------------------------

Name        : oprofile
Product     : Fedora 15
Version     : 0.9.6
Release     : 21.fc15
URL         : http://oprofile.sf.net
Summary     : System wide profiler
Description :
OProfile is a profiling system for systems running Linux. The
profiling runs transparently during the background, and profile data
can be collected at any time. OProfile makes use of the hardware performance
counters provided on Intel P6, and AMD Athlon family processors, and can use
the RTC for profiling on other x86 processor types.

See the HTML documentation for further details.

--------------------------------------------------------------------------------
Update Information:

When opcontrol was run by a normal user with sudo access it was possible for the user to craft options to opcontrol that would allow commands to be run with root privileges.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  7 2011 Will Cohen <wcohen@redhat.com> - 0.9.6-21
- Correct CVE-2011-1760. Resolves: rhbz #701508
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #701508 - CVE-2011-1760 oprofile: Local privilege escalation via crafted opcontrol event parameter [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=701508
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update oprofile' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2017 E-Soft Inc. All rights reserved.