The Network Manager VPNC plugin is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root. References: https://bugzilla.novell.com/show_bug.cgi?id=1101147 https://download.gnome.org/sources/NetworkManager-vpnc/1.2/NetworkManager-vpnc-1.2.6.news Patch: https://gitlab.gnome.org/GNOME/NetworkManager-vpnc/commit/07ac18a32b4
Created NetworkManager-vpnc tracking bugs for this issue: Affects: epel-all [bug 1605922] Affects: fedora-all [bug 1605921]
NetworkManager-vpnc-1.2.6-1.el7 has been pushed to the Fedora EPEL 7 stable repository. If problems still persist, please make note of it in this bug report.
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.