GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Wed Feb 13, 2008 11:26 pm Post subject: [ GLSA 200802-07 ] Pulseaudio: Privilege escalation |
 |
|
Gentoo Linux Security Advisory
Title: Pulseaudio: Privilege escalation (GLSA 200802-07)
Severity: high
Exploitable: local
Date: February 13, 2008
Bug(s): #207214
ID: 200802-07
Synopsis
A vulnerability in pulseaudio may allow a local user to execute actions with escalated privileges.
Background
Pulseaudio is a networked sound server with an advanced plugin system.
Affected Packages
Package: media-sound/pulseaudio
Vulnerable: < 0.9.9
Unaffected: >= 0.9.9
Architectures: All supported architectures
Description
Marcus Meissner from SUSE reported that the pa_drop_root() function does not properly check the return value of the system calls setuid(), seteuid(), setresuid() and setreuid() when dropping its privileges.
Impact
A local attacker could cause a resource exhaustion to make the system calls fail, which would cause Pulseaudio to run as root. The attacker could then perform actions with root privileges.
Workaround
There is no known workaround at this time.
Resolution
All Pulseaudio users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=media-sound/pulseaudio-0.9.9" |
References
CVE-2008-0008 |
|
News & Announcements
