PT-2005-5596 · Debian · Kernel-Patch-Vserver+2

Published

1970-01-01

Updated

2017-07-20

CVE-2005-4418

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions util-vserver versions prior to 0.30.208-1 kernel-patch-vserver versions prior to 1.9.5.5 kernel-patch-vserver 2.x versions prior to 2.3

Description The issue allows local users to conduct unauthorized activities due to a default policy that trusts unknown capabilities. Multiple vulnerabilities in the kernel-patch-vserver and util-vserver packages of Debian GNU/Linux could lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For util-vserver versions prior to 0.30.208-1, update to version 0.30.208-1 or later. For kernel-patch-vserver versions prior to 1.9.5.5, update to version 1.9.5.5 or later. For kernel-patch-vserver 2.x versions prior to 2.3, update to version 2.3 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

BDU:2015-03164

BDU:2015-03165

CVE-2005-4418

DSA-1011-1

Affected Products

Debian

Kernel-Patch-Vserver

Util-Vserver

PT-2005-5596 · Debian · Kernel-Patch-Vserver+2

CVE-2005-4418

Related Identifiers

Affected Products

References · 11