logrotate Debian Linux 'var/log/postgresql' 符号链接本地特权提升漏洞

admin

0
文章

0
评论

2023-12-09 00:48:03 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

中危 logrotate Debian Linux 'var/log/postgresql' 符号链接本地特权提升漏洞

CVE编号

CVE-2011-1548

利用情况

暂无

补丁情况

官方补丁

披露时间

2011-03-31

漏洞描述

logrotate是一款日志文件管理工具。在Gentoo linux中logrotate默认配置使用root特权处理目录中的文件，允许非root用户写访问。利用logrotate不正确处理不信任目录，允许本地用户通过符号链接和硬链接对/var/log/postgresql/目录下的文件进行攻击，可能导致特权提升。

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=606544
http://openwall.com/lists/oss-security/2011/03/04/16
http://openwall.com/lists/oss-security/2011/03/04/17
http://openwall.com/lists/oss-security/2011/03/04/18
http://openwall.com/lists/oss-security/2011/03/04/19
http://openwall.com/lists/oss-security/2011/03/04/22
http://openwall.com/lists/oss-security/2011/03/04/24
http://openwall.com/lists/oss-security/2011/03/04/25
http://openwall.com/lists/oss-security/2011/03/04/26
http://openwall.com/lists/oss-security/2011/03/04/27
http://openwall.com/lists/oss-security/2011/03/04/28
http://openwall.com/lists/oss-security/2011/03/04/29
http://openwall.com/lists/oss-security/2011/03/04/30
http://openwall.com/lists/oss-security/2011/03/04/31
http://openwall.com/lists/oss-security/2011/03/04/32
http://openwall.com/lists/oss-security/2011/03/04/33
http://openwall.com/lists/oss-security/2011/03/05/4
http://openwall.com/lists/oss-security/2011/03/05/6
http://openwall.com/lists/oss-security/2011/03/05/8
http://openwall.com/lists/oss-security/2011/03/06/3
http://openwall.com/lists/oss-security/2011/03/06/4
http://openwall.com/lists/oss-security/2011/03/06/5
http://openwall.com/lists/oss-security/2011/03/06/6
http://openwall.com/lists/oss-security/2011/03/07/11
http://openwall.com/lists/oss-security/2011/03/07/5
http://openwall.com/lists/oss-security/2011/03/07/6
http://openwall.com/lists/oss-security/2011/03/08/5
http://openwall.com/lists/oss-security/2011/03/10/2
http://openwall.com/lists/oss-security/2011/03/10/3
http://openwall.com/lists/oss-security/2011/03/10/6
http://openwall.com/lists/oss-security/2011/03/10/7
http://openwall.com/lists/oss-security/2011/03/11/3
http://openwall.com/lists/oss-security/2011/03/11/5
http://openwall.com/lists/oss-security/2011/03/14/26
http://openwall.com/lists/oss-security/2011/03/23/11
http://www.securityfocus.com/bid/47167

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	gentoo	logrotate	*	-
	运行在以下环境
	系统	debian_10	logrotate	*		Up to (excluding) 3.7.8-6
	运行在以下环境
	系统	debian_11	logrotate	*		Up to (excluding) 3.7.8-6
	运行在以下环境
	系统	debian_12	logrotate	*		Up to (excluding) 3.7.8-6
	运行在以下环境
	系统	debian_sid	logrotate	*		Up to (excluding) 3.7.8-6