CVE-2002-0080

Name of the Vulnerable Software and Affected Versions rsync versions 2.4.6 kernel versions 2.2.19 dump versions 0.4b19 dump-static versions 0.4b19 rmt versions 0.4b19 zlib versions 1.1.3 zlib-devel versions 1.1.3 kernel-doc versions 2.2.19 kernel-enterprise versions 2.2.19 kernel-ibcs versions 2.2.19 kernel-BOOT versions 2.2.19 kernel-headers versions 2.2.19 kernel-jensen versions 2.2.19 kernel-pcmcia-cs versions 2.2.19 kernel-smp versions 2.2.19 kernel-source versions 2.2.19 kernel-utils versions 2.2.19

Description The issue is related to multiple vulnerabilities in various packages of the Red Hat Linux operating system. These vulnerabilities can be exploited remotely and may lead to a breach of confidentiality, integrity, and availability of protected information. One specific issue is with rsync, which does not properly call setgroups before dropping privileges when running in daemon mode, potentially providing supplemental group privileges to local users.

Recommendations For rsync version 2.4.6, update to a version that properly handles setgroups before dropping privileges. For kernel versions 2.2.19, apply security patches or updates to address the vulnerabilities. For dump version 0.4b19, update to a version that fixes the identified vulnerabilities. For dump-static version 0.4b19, update to a version that fixes the identified vulnerabilities. For rmt version 0.4b19, update to a version that fixes the identified vulnerabilities. For zlib version 1.1.3, update to a version that fixes the identified vulnerabilities. For zlib-devel version 1.1.3, update to a version that fixes the identified vulnerabilities. For kernel-doc version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-enterprise version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-ibcs version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-BOOT version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-headers version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-jensen version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-pcmcia-cs version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-smp version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-source version 2.2.19, apply security patches or updates to address the vulnerabilities. For kernel-utils version 2.2.19, apply security patches or updates to address the vulnerabilities.