CVE-2011-1526
Published: 11 July 2011
ftpd.c in the GSS-API FTP daemon in MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.1 and earlier does not check the krb5_setegid return value, which allows remote authenticated users to bypass intended group access restrictions, and create, overwrite, delete, or read files, via standard FTP commands, related to missing autoconf tests in a configure script.
Notes
Author | Note |
---|---|
sbeattie | krb5-appl was split out from the krb5 package between hardy and lucid by upstream; the CVE covers two issues: * the configure test for setegid() wasn't included when krb5-appl was split out and so setegid is defined to always return an error, which thus doesn't affect hardy * the code never checks the return value of setegid, which is a problem when setegid always fails, but less so when the setegid() is a real call, though still a real issue. hardy is affected by this, but less so than the split out krb5-appl packages. Therefore I'm marking this priority low for hardy/krb5 |
Priority
Status
Package | Release | Status |
---|---|---|
krb5 Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Not vulnerable
(krb5-appl separate pkg)
|
|
maverick |
Not vulnerable
(krb5-appl separate pkg)
|
|
natty |
Not vulnerable
(krb5-appl separate pkg)
|
|
oneiric |
Not vulnerable
(krb5-appl separate pkg)
|
|
precise |
Not vulnerable
(krb5-appl separate pkg)
|
|
quantal |
Not vulnerable
(krb5-appl separate pkg)
|
|
raring |
Not vulnerable
(krb5-appl separate pkg)
|
|
saucy |
Not vulnerable
(krb5-appl separate pkg)
|
|
trusty |
Not vulnerable
(krb5-appl separate pkg)
|
|
upstream |
Not vulnerable
|
|
utopic |
Not vulnerable
(krb5-appl separate pkg)
|
|
vivid |
Not vulnerable
(krb5-appl separate pkg)
|
|
wily |
Not vulnerable
(krb5-appl separate pkg)
|
|
xenial |
Not vulnerable
(krb5-appl separate pkg)
|
|
yakkety |
Not vulnerable
(krb5-appl separate pkg)
|
|
zesty |
Not vulnerable
(krb5-appl separate pkg)
|
|
krb5-appl Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Ignored
(end of life)
|
|
maverick |
Ignored
(end of life)
|
|
natty |
Ignored
(end of life)
|
|
oneiric |
Ignored
(end of life)
|
|
precise |
Ignored
(end of life)
|
|
quantal |
Ignored
(end of life)
|
|
raring |
Ignored
(end of life)
|
|
saucy |
Ignored
(end of life)
|
|
trusty |
Does not exist
|
|
upstream |
Released
|
|
utopic |
Does not exist
|
|
vivid |
Does not exist
|
|
wily |
Does not exist
|
|
xenial |
Does not exist
|
|
yakkety |
Does not exist
|
|
zesty |
Does not exist
|
|
Patches: upstream: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-005.txt |