opie security update
This update fixes off-by-one errors in opiesu
(CVE-2011-2489) and missing setuid() return value checks in
opielogin (CVE-2011-2490).
This update also removes the setuid bit from opiesu
program. If you rely on the setuid bit on opiesu, add the
following line to /etc/permissions.local:
/usr/bin/opiesu root:root 4755
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4812
Fixed bugs
bnc#698772
VUL-0: opie: off by one errors in opiesu
CVE#CVE-2011-2489
Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line.
CVE#CVE-2011-2490
opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by arranging for an account to already be running its maximum number of processes.
