Advertisement

Latest News

[ Windows | Linux | Apple ]

· Microsoft Office Clone Updates Interface, Improves File Support
· Windows Firewall Control 4.0.0.0 released
· 10 amazing Linux desktop environments you've probably never seen
· Microsoft Office security flaw hits thousands in latest hacker attack
· Kubuntu 13.04 Raring Ringtail Review
· Windows Mobile 7 concept video shows why Microsoft dumped the platform
· Building a Thin Mini-ITX PC and more
· Microsoft wants consumers to control the camera by voice, according to filed patent
· Dell replays Windows 8 blame card as PC sales slide
· m23 rock 13.1 released

Upcoming News

· GUNNAR Intercept Gaming Eyewear Video Review with Kaeyi Dream @ HardwareHeaven.com
· [slackware-security] kernel (SSA:2013-140-01)
· [CentOS-announce] CEBA-2013:0835 CentOS 6 selinux-policy Update
· Ubuntu Weekly Newsletter Issue 317
· [RHSA-2013:0841-01] Important: kernel security update
· [RHSA-2013:0829-01] Important: kernel-rt security and bug fix update
· [RHSA-2013:0840-01] Important: kernel security update
· A4Tech Bloody Gun3 UC3 Headshot V8 Gaming Mouse Review - $40?= For The Ultimate Package
· Win a Kingston HyperX Beast 16GB 2133MHz Memory Kit @ Bigbruin.com
· HOT Raspberry Pi - A DIY Mini Desktop PC Build Project

Linux Compatibility

· Dell Dimension 9100
· CL-CAM50001 UPC=3700284609322
· DFE 520 TX
· nVidia GeForce4 MX 440
· Gore: Ultimate Soldier
· SMC2802W V2 wi-fi 54Mbps PCI card
· Wireless modem router N300
· Dell P780
· ASUS A7V8X
· BricsCAD for Linux

New Forum Topics

· shutdown link ?
by: estirwent
on: 2013-05-11 17:46
18 replies, 6368 views

· Laptop keyboard drank soda
by: Zenn
on: 2013-04-30 00:27
1 replies, 651 views

· connecting to to internet with ubuntu
by: Zenn
on: 2013-04-30 00:26
2 replies, 4510 views

· Need Linux-compatible PS/2 expansion card
by: Zenn
on: 2013-04-30 00:26
1 replies, 715 views

· irql_not_less_or_equal blue screen
by: Zenn
on: 2013-04-30 00:25
2 replies, 1105 views

News Channels

· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android

What's New

Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

DSA 2419-1: puppet security update

Posted by Philipp Esselbach on: 02/28/2012 10:36 AM [ Print | 0 comment(s) ]

A puppet security update has been released for Debian GNU/Linux

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2419-1 security@debian.org
http://www.debian.org/security/ Florian Weimer
February 27, 2012 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : puppet
Vulnerability : several
Problem type : local
Debian-specific: no
CVE ID : CVE-2012-1053 CVE-2012-1054

Two vulnerabilities were discovered in Puppet, a centralized
configuration management tool.

CVE-2012-1053
Puppet runs execs with an unintended group privileges,
potentially leading to privilege escalation.

CVE-2012-1054
The k5login type writes to untrusted locations,
enabling local users to escalate their privileges
if the k5login type is used.

For the stable distribution (squeeze), these problems have been fixed
in version 2.6.2-5+squeeze4.

For the testing distribution (wheezy) and the unstable distribution
(sid), these problems have been fixed in version 2.7.11-1.

We recommend that you upgrade your puppet packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2013 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition