TROYANOSYVIRUS
Retour aux CVEs

CVE-2011-1022

N/A

Description

The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages originated in the kernel, which allows local users to bypass intended resource restrictions via a crafted message.

Details CVE

Score CVSS v3.1N/A
Publie3/22/2011
Derniere modification4/29/2026
Sourcenvd
Observations honeypot0

Produits affectes

balbir_singh:libcgroup

Faiblesses (CWE)

CWE-264

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615987(secalert@redhat.com)
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056683.html(secalert@redhat.com)
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056734.html(secalert@redhat.com)
http://lists.opensuse.org/opensuse-updates/2011-04/msg00027.html(secalert@redhat.com)
http://openwall.com/lists/oss-security/2011/02/25/11(secalert@redhat.com)
http://openwall.com/lists/oss-security/2011/02/25/12(secalert@redhat.com)
http://openwall.com/lists/oss-security/2011/02/25/14(secalert@redhat.com)
http://openwall.com/lists/oss-security/2011/02/25/6(secalert@redhat.com)
http://openwall.com/lists/oss-security/2011/02/25/9(secalert@redhat.com)
http://secunia.com/advisories/43611(secalert@redhat.com)
http://secunia.com/advisories/43758(secalert@redhat.com)
http://secunia.com/advisories/43891(secalert@redhat.com)
http://secunia.com/advisories/44093(secalert@redhat.com)
http://sourceforge.net/mailarchive/message.php?msg_id=26598749(secalert@redhat.com)
http://sourceforge.net/mailarchive/message.php?msg_id=27102603(secalert@redhat.com)
http://sourceforge.net/projects/libcg/files/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2/download(secalert@redhat.com)
http://www.debian.org/security/2011/dsa-2193(secalert@redhat.com)
http://www.redhat.com/support/errata/RHSA-2011-0320.html(secalert@redhat.com)
http://www.securityfocus.com/bid/46578(secalert@redhat.com)
http://www.securitytracker.com/id?1025157(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0679(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0774(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=680409(secalert@redhat.com)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615987(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056683.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056734.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2011-04/msg00027.html(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/02/25/11(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/02/25/12(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/02/25/14(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/02/25/6(af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/02/25/9(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43611(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43758(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/43891(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/44093(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/mailarchive/message.php?msg_id=26598749(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/mailarchive/message.php?msg_id=27102603(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/projects/libcg/files/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2/download(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2011/dsa-2193(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2011-0320.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/46578(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id?1025157(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0679(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0774(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=680409(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.