Mandrake Linux Security Advisory : glibc (MDKSA-2001:012)

Low Nessus Plugin ID 61886

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

The LD_PRELOAD variable in the GNU C Library is honoured normally even for SUID/SGID applications (but removed afterwards from the environment) if it does not contain '/' characters. There is a special check which only preloads found libraries if they have the SUID bit set. However, if a library has been found in /etc/ld.so.cache, this check was not performed. As a result, a malicious user could preload some library located in /lib or /usr/lib before SUID/SGID applications and create or overwrite a file he would not normally have permission to. As well, LD_PROFILE output from SUID programs would go into /var/tmp, making it vulnerable to various link attacks.

Solution

Update the affected glibc, glibc-devel and / or glibc-profile packages.

Plugin Details

Severity: Low

ID: 61886

File Name: mandrake_MDKSA-2001-012.nasl

Version: $Revision: 1.3 $

Type: local

Published: 2012/09/06

Modified: 2013/05/31

Dependencies: 12634

Risk Information

Risk Factor: Low

CVSSv2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:glibc, p-cpe:/a:mandriva:linux:glibc-devel, p-cpe:/a:mandriva:linux:glibc-profile, cpe:/o:mandrakesoft:mandrake_linux:6.0, cpe:/o:mandrakesoft:mandrake_linux:6.1, cpe:/o:mandrakesoft:mandrake_linux:7.0, cpe:/o:mandrakesoft:mandrake_linux:7.1, cpe:/o:mandrakesoft:mandrake_linux:7.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2001/01/18

Reference Information

CVE: CVE-2001-0169

MDKSA: 2001:012