Technical Description

A vulnerability has been identified in rPath Linux, which could be exploited by local attackers to obtain elevated privileges. This issue is caused by an error in rMake that creates the "/dev/zero" file with incorrect device number and permissions, which could be exploited by malicious users to execute arbitrary code with "root" privileges.

Affected Products

rPath Linux 1

Solution

Upgrade the affected packages :
rmake=/conary.rpath.com at rpl:devel//1/1.0.11.1-2-0.1
rmake-proxy=/conary.rpath.com at rpl:devel//1/1.0.11.1-2-0.1
rmake-repos=/conary.rpath.com at rpl:devel//1/1.0.11.1-2-0.1

References

http://www.vupen.com/english/advisories/2007/3363
http://lists.rpath.com/pipermail/security-announce/2007-October/000256.html
http://lists.rpath.com/pipermail/security-announce/2007-October/000260.html
https://issues.rpath.com/browse/RMK-634

Credits

Vulnerability reported by the vendor.

ChangeLog

2007-10-05 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts with CVE, CWE, and CVSS when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.