Launchpad CVE tracker

CVE 2011-0523

gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users to read otherwise restricted files via unspecified vectors.

Related bugs and status

CVE-2011-0523 (Candidate) is related to these bugs:

Bug #690323: gypsy opens arbitrary files, has unchecked buffer overflows

		In	Importance	Status
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Ubuntu)	High	Fix Released
690323	gypsy opens arbitrary files, has unchecked buffer overflows	Gypsy	Critical	Fix Released
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Suse)	Medium	Fix Released
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Fedora)	Medium	Invalid
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Ubuntu Maverick)	High	Fix Released
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Ubuntu Natty)	High	Fix Released
690323	gypsy opens arbitrary files, has unchecked buffer overflows	gypsy (Ubuntu Oneiric)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-0523

References