drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in NetworkManager
| Name: |
Ausführen beliebiger Kommandos in NetworkManager |
|
| ID: |
FEDORA-2011-13425 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 16 |
|
| Datum: |
Sa, 1. Oktober 2011, 20:47 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3364 |
|
| Applikationen: |
NetworkManager |
|
Originalnachricht |
Name : NetworkManager
Product : Fedora 16
Version : 0.9.1.90
Release : 3.git20110927.fc16
URL : http://www.gnome.org/projects/NetworkManager/
Summary : Network connection manager and user applications
Description :
NetworkManager is a system network service that manages your network devices
and connections, attempting to keep active network connectivity when available.
It manages ethernet, WiFi, mobile broadband (WWAN), and PPPoE devices, and
provides VPN integration with a variety of different VPN services.
-------------------------------------------------------------------------------
-
Update Information:
This update fixes security issue in ifcfg-rh plugin (CVE-2011-3364). This
update also fixes an applet and connection editor crash caused by mis-packaging of some UI-related files, and corrects the path of iscsiadm. This update further adds the ability to delete connections from nmcli, correctly handles IPv6 link-local DNS servers when using the dnsmasq local caching nameserver plugin, and fixes connection timestamps for VPN connections.
-------------------------------------------------------------------------------
-
ChangeLog:
* Tue Sep 27 2011 Dan Williams <dcbw@redhat.com> - 0.9.1.90-3.git20110927
- core: fix location of wifi.ui (rh #741448)
* Tue Sep 27 2011 Jiří Klimeš <jklimes@redhat.com> -
0.9.1.90-2.git20110927
- core: ifcfg-rh: remove newlines when writing to ifcfg files (CVE-2011-3364)
(rh #737338)
- core: change iscsiadm path to /sbin/iscsiadm in ifcfg-rh plugin (rh #740753)
- core: fix refcounting when deleting a default wired connection (lp:797868)
* Mon Sep 19 2011 Dan Williams <dcbw@redhat.com> - 0.9.1.90-1
- Update to 0.9.1.90 (0.9.2-beta1)
- core: fix IPv6 link-local DNS servers in the dnsmasq DNS plugin
- cli: add ability to delete connections
- keyfile: fix an issue with duplicated keyfile connections
- core: ensure the 'novj' option is passed through to pppd
- core: store timestamps for VPN connections too (rh #725353)
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #737338 - CVE-2011-3364 NetworkManager: Console user can escalate
to root via newlines in ifcfg-rh connection name
https://bugzilla.redhat.com/show_bug.cgi?id=737338
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update NetworkManager' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
