CVE-2011-1154

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions logrotate versions 3.7.9 and earlier logrotate versions prior to 3.8.0

Description The issue allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename. This can be demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name. Exploitation of the vulnerabilities can lead to disruption of confidentiality, integrity, and availability of protected information and can be performed locally.

Recommendations For logrotate versions 3.7.9 and earlier, update to version 3.8.0 or later. For logrotate versions prior to 3.8.0, update to version 3.8.0 or later. As a temporary workaround, consider restricting access to the shred file function in logrotate.c until a patch is available.

Fix

RCE

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-362

Related Identifiers

ALT-PU-2015-2093

ALT-PU-2023-1925

ALT-PU-2024-11877

ALT-PU-2024-12867

BDU:2015-06014

BDU:2015-06015

BDU:2015-09654

CVE-2011-1154

OPENSUSE-SU-2024:10231-1

RHSA-2011:0407

RHSA-2011_0407

Affected Products

Alt Linux

Red Hat

Logrotate

CVE-2011-1154

Weakness Enumeration

Related Identifiers

Affected Products

References · 70