Bug 1299 - tmux privileges escalation ( CVE-2011-1496 )
Summary: tmux privileges escalation ( CVE-2011-1496 )
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal major
Target Milestone: ---
Assignee: Michael Scherer
QA Contact:
URL: http://cve.mitre.org/cgi-bin/cvename....
Whiteboard:
Keywords:
Depends on:
Blocks: 908
  Show dependency treegraph
 
Reported: 2011-05-16 09:46 CEST by Michael Scherer
Modified: 2011-05-16 17:32 CEST (History)
0 users

See Also:
Source RPM: tmux
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Michael Scherer 2011-05-16 09:46:25 CEST 
Tmux do not drop group privilege, thus allowing to bypass group based restriction.

https://bugzilla.redhat.com/show_bug.cgi?id=693824
Michael Scherer 2011-05-16 09:46:33 CEST

Blocks: (none) => 908

Comment 1 Michael Scherer 2011-05-16 17:32:51 CEST 
Fixed in -2mdv.

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Assignee: bugsquad => misc
Note You need to log in before you can comment on or make changes to this bug.