Oval Definition:oval:org.opensuse.security:def:20121053
Revision Date:2022-05-20Version:1
Title:CVE-2012-1053
Description:

The change_user method in the SUIDManager (lib/puppet/util/suidmanager.rb) in Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3 does not properly manage group privileges, which allows local users to gain privileges via vectors related to (1) the change_user not dropping supplementary groups in certain conditions, (2) changes to the eguid without associated changes to the egid, or (3) the addition of the real gid to supplementary groups.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2012-1053
Mitre CVE-2012-1053
SUSE CVE-2012-1053
openSUSE-SU-2012:0835-1
openSUSE-SU-2012:0835-1
SUSE-SU-2012:0325-1
SUSE-SU-2012:0325-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
Product(s):
Definition Synopsis
  • Release Information
  • sled11-sp1 is installed
  • AND puppet less than 2.6.12-0.12.1
  • OR Package Information
  • sles11-sp1 is installed
  • OR sles11-sp1-vmware is installed
  • OR sles11-sp1_for_sp2 is installed
  • AND
  • puppet-server less than 2.6.12-0.12.1
  • OR puppet less than 2.6.12-0.12.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • puppet-2.6.12-0.12 is installed
  • OR puppet-server-2.6.12-0.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND
  • puppet-2.6.12-0.12 is installed
  • OR puppet-server-2.6.12-0.12 is installed
  • OR pwdutils-3.2.8-0.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • puppet-2.6.12-0.12 is installed
  • OR puppet-server-2.6.12-0.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • puppet-2.6.12-0.12.1 is installed
  • OR puppet-server-2.6.12-0.12.1 is installed
  • OR pwdutils-3.2.8-0.2.35 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • puppet-2.6.12-0.12.1 is installed
  • OR puppet-server-2.6.12-0.12.1 is installed
    • BACK