First published: Sat Dec 31 2005(Updated: )
NetBSD 1.6, NetBSD 2.0 through 2.1, and NetBSD-current before 20051031 allows local users to gain privileges by attaching a debugger to a setuid/setgid (P_SUGID) process that performs an exec without a reset of real credentials.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
NetBSD NetBSD | =1.6 | |
NetBSD NetBSD | =1.6.1 | |
NetBSD NetBSD | =1.6.2 | |
NetBSD NetBSD | =2.0 | |
NetBSD NetBSD | =2.0.1 | |
NetBSD NetBSD | =2.0.2 | |
NetBSD NetBSD | =2.0.3 | |
NetBSD NetBSD | =2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.