drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in NetworkManager
Name: |
Ausführen beliebiger Kommandos in NetworkManager |
|
ID: |
FEDORA-2011-13425 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Sa, 1. Oktober 2011, 20:47 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3364 |
|
Applikationen: |
NetworkManager |
|
Originalnachricht |
Name : NetworkManager Product : Fedora 16 Version : 0.9.1.90 Release : 3.git20110927.fc16 URL : http://www.gnome.org/projects/NetworkManager/ Summary : Network connection manager and user applications Description : NetworkManager is a system network service that manages your network devices and connections, attempting to keep active network connectivity when available. It manages ethernet, WiFi, mobile broadband (WWAN), and PPPoE devices, and provides VPN integration with a variety of different VPN services.
------------------------------------------------------------------------------- - Update Information:
This update fixes security issue in ifcfg-rh plugin (CVE-2011-3364). This update also fixes an applet and connection editor crash caused by mis-packaging of some UI-related files, and corrects the path of iscsiadm. This update further adds the ability to delete connections from nmcli, correctly handles IPv6 link-local DNS servers when using the dnsmasq local caching nameserver plugin, and fixes connection timestamps for VPN connections. ------------------------------------------------------------------------------- - ChangeLog:
* Tue Sep 27 2011 Dan Williams <dcbw@redhat.com> - 0.9.1.90-3.git20110927 - core: fix location of wifi.ui (rh #741448) * Tue Sep 27 2011 Jiří Klimeš <jklimes@redhat.com> - 0.9.1.90-2.git20110927 - core: ifcfg-rh: remove newlines when writing to ifcfg files (CVE-2011-3364) (rh #737338) - core: change iscsiadm path to /sbin/iscsiadm in ifcfg-rh plugin (rh #740753) - core: fix refcounting when deleting a default wired connection (lp:797868) * Mon Sep 19 2011 Dan Williams <dcbw@redhat.com> - 0.9.1.90-1 - Update to 0.9.1.90 (0.9.2-beta1) - core: fix IPv6 link-local DNS servers in the dnsmasq DNS plugin - cli: add ability to delete connections - keyfile: fix an issue with duplicated keyfile connections - core: ensure the 'novj' option is passed through to pppd - core: store timestamps for VPN connections too (rh #725353) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #737338 - CVE-2011-3364 NetworkManager: Console user can escalate to root via newlines in ifcfg-rh connection name https://bugzilla.redhat.com/show_bug.cgi?id=737338 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update NetworkManager' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|