CVE-2011-0523, security advisory, novell, suse linux, suse, security, cve


Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-0523 at MITRE


gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users to read otherwise restricted files via unspecified vectors.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 1.85
Vector AV:L/AC:M/Au:N/C:P/I:N/A:N
Access Vector Local
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact None
Availability Impact None
SUSE Bugzilla entry: 666839 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.4
  • gypsy >= 0.8-5.1
  • gypsy-debuginfo >= 0.8-5.1
  • gypsy-debugsource >= 0.8-5.1
  • libgypsy-devel >= 0.8-5.1
  • libgypsy0 >= 0.8-5.1
  • libgypsy0-debuginfo >= 0.8-5.1