Nom du paquet
vixie-cron
Date
2001-02-20
Advisory ID
MDKSA-2001:022
Affected versions
CS1.0 i586 , 6.1 i586 , 6.0 i586 , 7.0 i586 , 7.1 i586 , 7.2 i586

Problem description

A buffer overflow exists in the 'crontab' command if it was called by a user with a username longer than 20 characters. If the system administrator has created usernames of that length, it would be possible for those users to gain elevated privileges.

Updated packages

CS1.0 i586

 7ae591a9ab5ac2ad8fd6d542a49344e8  1.0.1/RPMS/vixie-cron-3.0.1-46.2mdk.i586.rpm
9ffeb80d6d94e9856806745f687fca94  1.0.1/SRPMS/vixie-cron-3.0.1-46.2mdk.src.rpm

6.1 i586

 59f528e3b9ee285a474b3d846d276fd6  6.1/RPMS/vixie-cron-3.0.1-46.2mdk.i586.rpm
9ffeb80d6d94e9856806745f687fca94  6.1/SRPMS/vixie-cron-3.0.1-46.2mdk.src.rpm

6.0 i586

 66a027d9cee17d97e9ba22b2b325b71d  6.0/RPMS/vixie-cron-3.0.1-46.2mdk.i586.rpm
9ffeb80d6d94e9856806745f687fca94  6.0/SRPMS/vixie-cron-3.0.1-46.2mdk.src.rpm

7.0 i586

 91f31ff40a0228024606a3083c6a533d  7.0/RPMS/vixie-cron-3.0.1-46.2mdk.i586.rpm
9ffeb80d6d94e9856806745f687fca94  7.0/SRPMS/vixie-cron-3.0.1-46.2mdk.src.rpm

7.1 i586

 7ae591a9ab5ac2ad8fd6d542a49344e8  7.1/RPMS/vixie-cron-3.0.1-46.2mdk.i586.rpm
9ffeb80d6d94e9856806745f687fca94  7.1/SRPMS/vixie-cron-3.0.1-46.2mdk.src.rpm

7.2 i586

 ad51423d9bcfa372640219d8e8e1f9ce  7.2/RPMS/vixie-cron-3.0.1-46.1mdk.i586.rpm
e5d9b834788aff2a287c4df949d6b999  7.2/SRPMS/vixie-cron-3.0.1-46.1mdk.src.rpm