LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

system-config-firewall: privilege escalation/arbitrary code execution

Package(s):system-config-firewall CVE #(s):CVE-2011-2520
Created:July 19, 2011 Updated:August 2, 2011
Description: From the Red Hat advisory:

It was found that system-config-firewall used the Python pickle module in an insecure way when sending data (via D-Bus) to the privileged back-end mechanism. A local user authorized to configure firewall rules using system-config-firewall could use this flaw to execute arbitrary code with root privileges, by sending a specially-crafted serialized object.

Alerts:
Fedora FEDORA-2011-9652 2011-07-23
Scientific Linux SL-syst-20110718 2011-07-18
Red Hat RHSA-2011:0953-01 2011-07-18
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds