CVE-2006-2916
N/A
N/A
Summary
artswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.vupen.com/english/advisories/2006/2357
- http://secunia.com/advisories/20899
- http://www.osvdb.org/26506
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:107
- http://securitytracker.com/id?1016298
- http://www.gentoo.org/security/en/glsa/glsa-200606-22.xml
- http://secunia.com/advisories/20868
- http://www.securityfocus.com/archive/1/437362/100/0/threaded
- http://secunia.com/advisories/20786
- http://security.gentoo.org/glsa/glsa-200704-22.xml
- http://www.vupen.com/english/advisories/2007/0409
- http://secunia.com/advisories/20677
- http://www.securityfocus.com/bid/23697
- http://secunia.com/advisories/25059
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27221
- http://secunia.com/advisories/20827
- http://www.novell.com/linux/security/advisories/2006_38_security.html
- http://secunia.com/advisories/25032
- http://www.kde.org/info/security/advisory-20060614-2.txt
- http://mail.gnome.org/archives/beast/2006-December/msg00025.html
- http://dot.kde.org/1150310128/
- http://www.securityfocus.com/bid/18429
- http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.468256
References
- http://www.vupen.com/english/advisories/2006/2357
- http://secunia.com/advisories/20899
- http://www.osvdb.org/26506
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:107
- http://securitytracker.com/id?1016298
- http://www.gentoo.org/security/en/glsa/glsa-200606-22.xml
- http://secunia.com/advisories/20868
- http://www.securityfocus.com/archive/1/437362/100/0/threaded
- http://secunia.com/advisories/20786
- http://security.gentoo.org/glsa/glsa-200704-22.xml
- http://www.vupen.com/english/advisories/2007/0409
- http://secunia.com/advisories/20677
- http://www.securityfocus.com/bid/23697
- http://secunia.com/advisories/25059
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27221
- http://secunia.com/advisories/20827
- http://www.novell.com/linux/security/advisories/2006_38_security.html
- http://secunia.com/advisories/25032
- http://www.kde.org/info/security/advisory-20060614-2.txt
- http://mail.gnome.org/archives/beast/2006-December/msg00025.html
- http://dot.kde.org/1150310128/
- http://www.securityfocus.com/bid/18429
- http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.468256
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.