CVE-2011-3149

Related Files

Red Hat Security Advisory 2013-0521-02

Posted Feb 21, 2013

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-0521-02 - Pluggable Authentication Modules provide a system whereby administrators can set up authentication policies without having to recompile programs to handle authentication. A stack-based buffer overflow flaw was found in the way the pam_env module parsed users' "~/.pam_environment" files. If an application's PAM configuration contained "user_readenv=1", a local attacker could use this flaw to crash the application or, possibly, escalate their privileges. A denial of service flaw was found in the way the pam_env module expanded certain environment variables. If an application's PAM configuration contained "user_readenv=1", a local attacker could use this flaw to cause the application to enter an infinite loop.

tags | advisory, denial of service, overflow, local

systems | linux, redhat

advisories | CVE-2011-3148, CVE-2011-3149

MD5 | 0489b314f45ffa9df352c994e73f87c1

Download | Favorite | View

Gentoo Linux Security Advisory 201206-31

Posted Jun 25, 2012

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-31 - Multiple vulnerabilities have been found in Linux-PAM, allowing local attackers to possibly gain escalated privileges, cause a Denial of Service, corrupt data, or obtain sensitive information. Versions less than 1.1.5 are affected.

tags | advisory, denial of service, local, vulnerability

systems | linux, gentoo

advisories | CVE-2010-3316, CVE-2010-3430, CVE-2010-3431, CVE-2010-3435, CVE-2010-3853, CVE-2010-4706, CVE-2010-4707, CVE-2010-4708, CVE-2011-3148, CVE-2011-3149

MD5 | e6620ba56b503fdc619693864274ef3b

Download | Favorite | View

Ubuntu Security Notice USN-1237-1

Posted Oct 25, 2011

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1237-1 - Kees Cook discovered that the PAM pam_env module incorrectly handled certain malformed environment files. A local attacker could use this flaw to cause a denial of service, or possibly gain privileges. The default compiler options for affected releases should reduce the vulnerability to a denial of service. Kees Cook discovered that the PAM pam_env module incorrectly handled variable expansion. A local attacker could use this flaw to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, local

systems | linux, ubuntu

advisories | CVE-2011-3148, CVE-2011-3149, CVE-2011-3628

MD5 | 835e5fb3e9b17839c10166ea59e4b3b1

Download | Favorite | View

Debian Security Advisory 2326-1

Posted Oct 24, 2011

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2326-1 - Kees Cook of the ChromeOS security team discovered a buffer overflow in pam_env, a PAM module to set environment variables through the PAM stack, which allowed the execution of arbitrary code. An additional issue in argument parsing allows denial of service.

tags | advisory, denial of service, overflow, arbitrary

systems | linux, debian

advisories | CVE-2011-3148, CVE-2011-3149

MD5 | 576656d0a1d04a1014434f398bb7c36c

Download | Favorite | View