CVE-2011-1550

Name of the Vulnerable Software and Affected Versions logrotate on SUSE openSUSE Factory

Description The issue arises from the default configuration of logrotate, which uses root privileges to process files in directories that allow non-root write access. This lack of support for untrusted directories enables local users to perform symlink and hard link attacks. The vulnerability can be demonstrated in directories for various packages, including cobbler, inn, safte-monitor, and uucp.

Recommendations For logrotate on SUSE openSUSE Factory, consider reconfiguring logrotate to avoid processing files in directories with non-root write access as a temporary workaround. Restrict access to these directories to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.