Vulnerability Bulletins |
Aumento de privilegios en Red Hat Enterprise |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Aumento de privilegios |
Dificulty | Experto |
Required attacker level | Acceso remoto con cuenta |
System information |
|
Property | Value |
Affected manufacturer | GNU/Linux |
Affected software |
Red Hat Enterprise Linux (v. 5.3.z) - i386, ia64, noarch, ppc, s390x, x86_64 Red Hat Enterprise Linux (v. 4.7) |
Description |
|
Se ha descubierto una vulnerabilidad en la función compat_alloc_user_space() de Red Hat Enterprise Linux 5.3. La vulnerabilidad reside en la implementación de los niveles de compatibilidad. Un atacante local podría causar elevación de privilegios mediante métodos no especificados. |
|
Solution |
|
Actualización de software Red Hat Enterprise Linux Desktop (v. 5 client) Red Hat Enterprise Linux (v. 5.3.z server) Red Hat Enterprise Linux (v. 5.4.z server) Red Hat Enterprise Linux 4.7 https://rhn.redhat.com/ Red Hat (RHSA-2010:0882-1) Red Hat Enterprise Linux AS (v. 3 ELS) Red Hat Enterprise Linux ES (v. 3 ELS) https://rhn.redhat.com/ |
|
Standar resources |
|
Property | Value |
CVE | CVE-2010-3081 |
BID | |
Other resources |
|
Red Hat Security Advisory (RHSA-2010:0705-01) https://rhn.redhat.com/errata/RHSA-2010:0705-01.html Red Hat Security Advisory (RHSA-2010:0718-01) https://rhn.redhat.com/errata/RHSA-2010-0718.html Red Hat Security Advisory (RHSA-2010:0719-01) https://rhn.redhat.com/errata/RHSA-2010-0719.html Red Hat Security Advisory (RHSA-2010:0882-1) https://rhn.redhat.com/errata/RHSA-2010-0882.html |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2010-09-24 |
1.1 | Aviso actualizado por Red Hat ( (RHSA-2010:0718-01) | 2010-09-29 |
1.2 | Aviso actualizado por Red Hat ( (RHSA-2010:0719-01) | 2010-09-29 |
1.3 | Aviso actualizado por Red Hat (RHSA-2010:0882-01) | 2010-11-12 |