Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-4176

plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users.

Related bugs and status

CVE-2010-4176 (Candidate) is related to these bugs:

Bug #2031304: [MIR] dracut

Summary				In	Importance	Status
	2031304	[MIR] dracut		dracut (Ubuntu)	Undecided	Fix Committed

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: https://bugzilla.redha...
MISC: https://bugzilla.redha...