|
Family: Debian Local Security Checks --> Category: infos
[DSA1150] DSA-1150-1 shadow Vulnerability Scan
Vulnerability Scan Summary DSA-1150-1 shadow
Detailed Explanation for this Vulnerability Test
A bug has been discovered in several packages that execute the
setuid() system call without checking for success when trying to drop
rights, which may fail with some PAM configurations.
For the stable distribution (sarge) this problem has been fixed in
version 4.0.3-31sarge8.
For the unstable distribution (sid) this problem has been fixed in
version 4.0.17-2.
We recommend that you upgrade your passwd package.
Solution : http://www.debian.org/security/2006/dsa-1150
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|