CVE-2010-4170 and CVE-2010-4171: staprun module loading/unloading security fixes
Bug #677226 reported by
Lorenzo De Liso
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
systemtap (Debian) |
Fix Released
|
Unknown
|
|||
systemtap (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Maverick |
Fix Released
|
High
|
Unassigned |
Bug Description
Binary package hint: systemtap
Two security problems have been found in the setuid-root /usr/bin/staprun program [1]. The issue have been fixed upstream [2]. See CVE-2010-4170 and CVE-2010-4171.
[1] http://
[2] http://
visibility: | private → public |
Changed in systemtap (Ubuntu): | |
importance: | Undecided → High |
Changed in systemtap (Ubuntu Maverick): | |
importance: | Undecided → High |
Changed in systemtap (Ubuntu): | |
assignee: | nobody → Lorenzo De Liso (blackz) |
status: | New → In Progress |
Changed in systemtap (Ubuntu Maverick): | |
assignee: | nobody → Lorenzo De Liso (blackz) |
status: | New → In Progress |
Changed in systemtap (Debian): | |
status: | Unknown → New |
Changed in systemtap (Debian): | |
status: | New → Fix Committed |
Changed in systemtap (Debian): | |
status: | Fix Committed → Fix Released |
Changed in systemtap (Debian): | |
status: | Fix Released → New |
Changed in systemtap (Debian): | |
status: | New → Fix Released |
To post a comment you must log in.
Debdiff for natty.