Bug 27213

Summary: startinnfeed security hole
Product: [Retired] Red Hat Linux Reporter: Chris Evans <chris>
Component: innAssignee: Florian La Roche <laroche>
Status: CLOSED NOTABUG QA Contact: David Lawrence <dkl>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.0CC: notting
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2001-02-12 22:13:58 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Chris Evans 2001-02-12 22:13:55 UTC
Hi,

A bunch of format string vulnerabilities in "startinnfeed" have just
been reported to Bugtraq.

startinnfeed is suid-root. However it's not as serious as it could be
because startinnfeed is only executable by group "news". Furthermore,
RH7.0 full install does not seem to have any sgid-news executables.

Older distributions could be in danger, however; I know that there used
to exist sgid-news executables. And there have been holes in these!

Thought I'd better file a report :-)

Comment 1 Florian La Roche 2001-02-13 13:05:43 UTC
should have no security impact. Thanks for reporting this.