Secunia Security Advisory - Fedora has issued an update for autofs. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
926b31fcae0ec439f768ba99e3f1d1de8d050ebb311d78370b6bda3aa8ffb57f
----------------------------------------------------------------------
A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI
has been released. The new version includes many new and advanced
features, which makes it even easier to stay patched.
Download and test it today:
https://psi.secunia.com/
Read more about this new version:
https://psi.secunia.com/?page=changelog
----------------------------------------------------------------------
TITLE:
Fedora update for autofs
SECUNIA ADVISORY ID:
SA28168
VERIFY ADVISORY:
http://secunia.com/advisories/28168/
CRITICAL:
Less critical
IMPACT:
Security Bypass
WHERE:
Local system
OPERATING SYSTEM:
Fedora 7
http://secunia.com/product/15552/
Fedora 8
http://secunia.com/product/16769/
DESCRIPTION:
Fedora has issued an update for autofs. This fixes a vulnerability,
which can be exploited by malicious, local users to bypass certain
security restrictions.
For more information:
SA28156
SOLUTION:
Apply updated packages.
-- Fedora 7 --
128a3cf695f9c6662f9e474f833af528208182b7
autofs-debuginfo-5.0.1-31.ppc64.rpm
fc3114f874372d841b08ccee8287f631253454a8 autofs-5.0.1-31.ppc64.rpm
fa139fe88f913d4baaeea0906362776714098254 autofs-5.0.1-31.i386.rpm
58433c1470b32faf39b9c8dd3419907b2f1bc164
autofs-debuginfo-5.0.1-31.i386.rpm
8e5583a88125b5cc1de040ec7a37b57a5f014ae3
autofs-debuginfo-5.0.1-31.x86_64.rpm
f4693139aadd71c37002548da618bc6096936bca autofs-5.0.1-31.x86_64.rpm
fd72d964299f2476244c46d7217016a4a477ae0c
autofs-debuginfo-5.0.1-31.ppc.rpm
86f8116cd5906ead13d350e5455cbfb1a8eb46dd autofs-5.0.1-31.ppc.rpm
a47e9f37124f13bc7b720df5f6118a69e78ee329 autofs-5.0.1-31.src.rpm
-- Fedora 8 --
b08e6a8236afd2250c8542612de29016f5d55efa
autofs-debuginfo-5.0.2-24.ppc64.rpm
138d99ea5884b4128560dc1219d35045275bf34c autofs-5.0.2-24.ppc64.rpm
ef3527ea1b8230a764bddb76225eb2321ca60833
autofs-debuginfo-5.0.2-24.i386.rpm
297cb54d73055ad2bd2942997cde4d63dbe3a40a autofs-5.0.2-24.i386.rpm
ff889edb84ef0e04635ced4d3bb6068827c49f78 autofs-5.0.2-24.x86_64.rpm
a677c2dfac98532125583771ea565ba6f18f263d
autofs-debuginfo-5.0.2-24.x86_64.rpm
359d08650474f1f97eba5421e06aff2a48e447f8
autofs-debuginfo-5.0.2-24.ppc.rpm
f684647d7866a64cf655a582d665d6cefe7506f0 autofs-5.0.2-24.ppc.rpm
32b82ceae98e35860ec74c84f6d5ffac2282f191 autofs-5.0.2-24.src.rpm
ORIGINAL ADVISORY:
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00732.html
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00726.html
OTHER REFERENCES:
SA28156:
http://secunia.com/advisories/28156/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------