Oval Definition:
oval:org.mitre.oval:def:8133
Revision Date
:
2014-06-23
Version
:
18
Title
:
DSA-1500 splitvt -- privilege escalation
Description
:
Mike Ashton discovered that splitvt, a utility to run two programs in a split screen, did not drop group privileges prior to executing xprop. This could allow any local user to gain the privileges of group utmp.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2008-0162
DSA-1500
Platform(s)
:
Debian GNU/Linux 4.0
Product(s)
:
splitvt
Definition Synopsis
Debian GNU/Linux 4.0 is installed.
AND
Supported architectures section
Installed architecture is s390
OR
Installed architecture is amd64
OR
Installed architecture is powerpc
OR
Installed architecture is i386
OR
Installed architecture is mips
OR
Installed architecture is ia64
OR
Installed architecture is alpha
OR
Installed architecture is hppa
AND
splitvt is earlier than 1.6.5-9etch1
BACK