libtirpc: denial of service
| Package(s): | libtirpc | CVE #(s): | CVE-2008-4619 | ||||
| Created: | October 30, 2008 | Updated: | November 5, 2008 | ||||
| Description: | libtirpc performs incorrect handling of negative rights in the ACL
plugin. From the
Red Hat Bug description:
The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions. | ||||||
| Alerts: |
| ||||||