CVE-2011-0022
First published: Thu Jan 20 2011(Updated: )
It was discovered that 389 / Red Hat Directory Server's setup scripts set insecure permissions (0777) on the /var/run/dirsrv directory used to store Directory Server's pid files when multiple Directory Server instances were configured on the system to be run under the different unprivileged users. A local user could use this flaw to create, remove or replace pid files in this directory, possibly preventing correct start of the Directory Server instances, or causing Directory Server init script to kill arbitrary process during the Directory Server shutdown.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/redhat-ds-admin | <0:8.2.1-1.el5d | 0:8.2.1-1.el5d |
| redhat/redhat-ds-base | <0:8.2.4-1.el5d | 0:8.2.4-1.el5d |
| Red Hat 389 Directory Server | =1.2.1 | |
| Red Hat 389 Directory Server | =1.2.2 | |
| Red Hat 389 Directory Server | =1.2.3 | |
| Red Hat 389 Directory Server | =1.2.5 | |
| Red Hat 389 Directory Server | =1.2.5-rc1 | |
| Red Hat 389 Directory Server | =1.2.5-rc2 | |
| Red Hat 389 Directory Server | =1.2.5-rc3 | |
| Red Hat 389 Directory Server | =1.2.5-rc4 | |
| Red Hat 389 Directory Server | =1.2.6 | |
| Red Hat 389 Directory Server | =1.2.6-a2 | |
| Red Hat 389 Directory Server | =1.2.6-a3 | |
| Red Hat 389 Directory Server | =1.2.6-a4 | |
| Red Hat 389 Directory Server | =1.2.6-rc1 | |
| Red Hat 389 Directory Server | =1.2.6-rc2 | |
| Red Hat 389 Directory Server | =1.2.6-rc3 | |
| Red Hat 389 Directory Server | =1.2.6-rc6 | |
| Red Hat 389 Directory Server | =1.2.6-rc7 | |
| Red Hat 389 Directory Server | =1.2.6.1 | |
| Red Hat 389 Directory Server | =1.2.7-alpha3 | |
| Red Hat 389 Directory Server | =1.2.7.5 | |
| Red Hat 389 Directory Server | =1.2.8-alpha1 | |
| Red Hat 389 Directory Server | =1.2.8-alpha2 | |
| Red Hat Directory Server | =8.2 | |
| Red Hat Directory Server | =8.2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=671199
- http://www.redhat.com/support/errata/RHSA-2011-0293.html
- http://www.securityfocus.com/bid/46489
- http://www.securitytracker.com/id?1025102
- https://access.redhat.com/security/cve/CVE-2011-0022
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=669767
- https://rhn.redhat.com/errata/RHSA-2011-0293.html
- http://git.fedorahosted.org/git/?p=389/ds.git;a=commitdiff;h=5135d9a
- https://www.cve.org/CVERecord?id=CVE-2011-0022 https://nvd.nist.gov/vuln/detail/CVE-2011-0022
- https://access.redhat.com/errata/RHSA-2011:0293
Frequently Asked Questions
What is the severity of CVE-2011-0022?
CVE-2011-0022 is considered a medium-severity vulnerability due to insecure permissions set on the /var/run/dirsrv directory.
How do I fix CVE-2011-0022?
To fix CVE-2011-0022, you need to update to a secure version of Red Hat Directory Server that addresses this permission issue.
What software is affected by CVE-2011-0022?
CVE-2011-0022 affects multiple versions of Red Hat Directory Server and the 389 Directory Server.
What type of vulnerability is CVE-2011-0022?
CVE-2011-0022 is a permission-related vulnerability impacting the security of directory server instances running on the system.
Can CVE-2011-0022 allow unauthorized access?
Yes, the insecure permissions set by CVE-2011-0022 could potentially allow unauthorized users to access or manipulate pid files.
- collector/redhat-cve
- agent/type
- agent/first-publish-date
- agent/references
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-0022
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- package-manager/redhat
- vendor/fedoraproject
- canonical/red hat 389 directory server
- version/red hat 389 directory server/1.2.1
- version/red hat 389 directory server/1.2.2
- version/red hat 389 directory server/1.2.3
- version/red hat 389 directory server/1.2.5
- version/red hat 389 directory server/1.2.5-rc1
- version/red hat 389 directory server/1.2.5-rc2
- version/red hat 389 directory server/1.2.5-rc3
- version/red hat 389 directory server/1.2.5-rc4
- version/red hat 389 directory server/1.2.6
- version/red hat 389 directory server/1.2.6-a2
- version/red hat 389 directory server/1.2.6-a3
- version/red hat 389 directory server/1.2.6-a4
- version/red hat 389 directory server/1.2.6-rc1
- version/red hat 389 directory server/1.2.6-rc2
- version/red hat 389 directory server/1.2.6-rc3
- version/red hat 389 directory server/1.2.6-rc6
- version/red hat 389 directory server/1.2.6-rc7
- version/red hat 389 directory server/1.2.6.1
- version/red hat 389 directory server/1.2.7-alpha3
- version/red hat 389 directory server/1.2.7.5
- version/red hat 389 directory server/1.2.8-alpha1
- version/red hat 389 directory server/1.2.8-alpha2
- vendor/redhat
- canonical/red hat directory server
- version/red hat directory server/8.2
- version/red hat directory server/8.2.3