|| ||rPath Update Announcements <firstname.lastname@example.org>|
|| ||email@example.com, firstname.lastname@example.org|
|| ||rPSA-2007-0210-1 xen|
|| ||Mon, 08 Oct 2007 14:11:15 -0400|
|| ||email@example.com, firstname.lastname@example.org,
rPath Security Advisory: 2007-0210-1
Products: rPath Linux 1
Exposure Level Classification:
Indirect Root Deterministic Unauthorized Access
rPath Issue Tracking System:
Previous versions of the xen package are vulnerable an attack
in which a user with elevated privileges in a guest domain may
use a maliciously crafted grub.conf file to execute arbitrary
commands as root in domain 0.
Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html
to post comments)