U radu programskog paketa NetworkManager uočen je novi sigurnosni propust kojeg udaljeni napadač može iskoristiti za dobivanje većih privilegija u sustavu.
Paket:
NetworkManager 0.x
Operacijski sustavi:
Fedora 16
Kritičnost:
6
Problem:
pogreška u programskoj komponenti
Iskorištavanje:
udaljeno
Posljedica:
dobivanje većih privilegija
Rješenje:
programska zakrpa proizvođača
CVE:
CVE-2011-3364
Izvorni ID preporuke:
FEDORA-2011-13425
Izvor:
Fedora
Problem:
Sigurnosna ranjivost je posljedica pogreške u programskoj komponenti "ifcfg-rh".
Posljedica:
Udaljeni napadač ranjivost može iskoristiti za dobivanje većih ovlasti na ranjivom sustavu.
Rješenje:
Svim se korisnicima navedenog programskog paketa savjetuje korištenje dostupnih programskih nadogradnji.
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-13425
2011-09-28 18:47:03
--------------------------------------------------------------------------------
Name : NetworkManager
Product : Fedora 16
Version : 0.9.1.90
Release : 3.git20110927.fc16
URL : http://www.gnome.org/projects/NetworkManager/
Summary : Network connection manager and user applications
Description :
NetworkManager is a system network service that manages your network devices
and connections, attempting to keep active network connectivity when available.
It manages ethernet, WiFi, mobile broadband (WWAN), and PPPoE devices, and
provides VPN integration with a variety of different VPN services.
--------------------------------------------------------------------------------
Update Information:
This update fixes security issue in ifcfg-rh plugin (CVE-2011-3364). This
update also fixes an applet and connection editor crash caused by mis-packaging
of some UI-related files, and corrects the path of iscsiadm. This update
further adds the ability to delete connections from nmcli, correctly handles
IPv6 link-local DNS servers when using the dnsmasq local caching nameserver
plugin, and fixes connection timestamps for VPN connections.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 27 2011 Dan Williams <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> - 0.9.1.90-3.git20110927
- core: fix location of wifi.ui (rh #741448)
* Tue Sep 27 2011 JiĹ?Ä
Posljednje sigurnosne preporuke