|
|
Subscribe / Log in / New account

Pardus alert 2010-31 (sun-jdk sun-jre)

From:  Eren Turkay <eren@pardus.org.tr>
To:  pardus-security@pardus.org.tr
Subject:  [Pardus-security] [PLSA 2010-31] Sun-Java: Insecure Directory Permissions
Date:  Sun, 14 Feb 2010 14:18:36 +0200 (EET)
Message-ID:  <20100214121836.3DD2BA7AB99@lider.pardus.org.tr>

------------------------------------------------------------------------ Pardus Linux Security Advisory 2010-31 security@pardus.org.tr ------------------------------------------------------------------------ Date: 2010-02-14 Severity: 5 Type: Local ------------------------------------------------------------------------ Summary ======= A vulnerability has been fixed in Sun-java, which can be exploited by malicious people to execute arbitrary code via changing sun java binaries. Description =========== The vulnerability is caused from package.py, postInstall script of sun-java package. It tries to create /opt/sun-jdk/jre/.systemPrefs directory with "os.makedirs()" function, however default permission of the directories created by os.makedirs() is 0777. This allows anyone to replace sun java binaries, which can be used to execute arbitrary code. NOTE: This vulnerability is Pardus specific. Affected packages: Pardus 2009: sun-jdk, all before 1.6.0_p18-24-9 sun-jre, all before 1.6.0_p18-24-9 Resolution ========== There are update(s) for sun-jdk, sun-jre. You can update them via Package Manager or with a single command from console: pisi up sun-jdk sun-jre References ========== * http://bugs.pardus.org.tr/show_bug.cgi?id=12209 ------------------------------------------------------------------------ _______________________________________________ Pardus-security mailing list Pardus-security@pardus.org.tr http://liste.pardus.org.tr/mailman/listinfo/pardus-security


to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds