Mangelnde Rechteprüfung in rtkit
ID: | FEDORA-2013-18442 |
Distribution: | Fedora |
Plattformen: | Fedora 20 |
Datum: | Sa, 12. Oktober 2013, 09:46 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4326 |
Applikationen: | rtkit |
Originalnachricht |
|
Name : rtkit Product : Fedora 20 Version : 0.11 Release : 7.fc20 URL : http://git.0pointer.de/?p=rtkit.git Summary : Realtime Policy and Watchdog Daemon Description : RealtimeKit is a D-Bus system service that changes the scheduling policy of user processes/threads to SCHED_RR (i.e. realtime scheduling mode) on request. It is intended to be used as a secure mechanism to allow real-time scheduling to be used by normal user processes. -------------------------------------------------------------------------------- Update Information: CVE-2013-4326 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1009543 - CVE-2013-4326 rtkit: insecure calling of polkit [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1009543 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update rtkit' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |