Test ID:	1.3.6.1.4.1.25623.1.0.55822
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:806
Summary:	Redhat Security Advisory RHSA-2005:806
Description:	The remote host is missing updates announced in advisory RHSA-2005:806. GNU cpio copies files into or out of a cpio or tar archive. A race condition bug was found in cpio. It is possible for a local malicious user to modify the permissions of a local file if they have write access to a directory in which a cpio archive is being extracted. The Common Vulnerabilities and Exposures project has assigned the name CVE-2005-1111 to this issue. It was discovered that cpio uses a 0 umask when creating files using the -O (archive) option. This creates output files with mode 0666 (all users can read and write) regardless of the user's umask setting. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-1999-1572 to this issue. All users of cpio are advised to upgrade to this updated package, which contains backported fixes for these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-806.html Risk factor : Medium
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-1999-1572 http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/1391 Debian Security Information: DSA-664 (Google Search) http://www.debian.org/security/2005/dsa-664 http://www.mandriva.com/security/advisories?name=MDKSA-2005:032 http://www.redhat.com/support/errata/RHSA-2005-073.html http://www.redhat.com/support/errata/RHSA-2005-080.html http://www.redhat.com/support/errata/RHSA-2005-806.html http://www.trustix.org/errata/2005/0003/ Bugtraq: 20050204 [USN-75-1] cpio vulnerability (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=110763404701519&w=2 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10888 http://secunia.com/advisories/14357 http://secunia.com/advisories/17063 http://secunia.com/advisories/17532 XForce ISS Database: cpio-o-archive-insecure-permissions(19167) http://xforce.iss.net/xforce/xfdb/19167 Common Vulnerability Exposure (CVE) ID: CVE-2005-1111 Bugtraq: 20050413 cpio TOCTOU file-permissions vulnerability (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=111342664116120&w=2 Debian Security Information: DSA-846 (Google Search) http://www.debian.org/security/2005/dsa-846 FreeBSD Security Advisory: FreeBSD-SA-06:03 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:03.cpio.asc http://www.redhat.com/support/errata/RHSA-2005-378.html SCO Security Bulletin: SCOSA-2005.32 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.32/SCOSA-2005.32.txt SCO Security Bulletin: SCOSA-2006.2 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.2/SCOSA-2006.2.txt SuSE Security Announcement: SUSE-SR:2006:010 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-May/0004.html http://www.ubuntu.com/usn/usn-189-1 BugTraq ID: 13159 http://www.securityfocus.com/bid/13159 http://www.osvdb.org/15725 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:358 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9783 http://secunia.com/advisories/18290 http://secunia.com/advisories/18395 http://secunia.com/advisories/17123 http://secunia.com/advisories/16998 http://secunia.com/advisories/20117
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: