Joined: 12 May 2004
|Posted: Mon Apr 16, 2007 7:26 pm Post subject: [ GLSA 200704-11 ] Vixie Cron: Denial of Service
|Gentoo Linux Security Advisory
Title: Vixie Cron: Denial of Service (GLSA 200704-11)
Date: April 16, 2007
The Gentoo implementation of Vixie Cron is vulnerable to a local Denial of Service.
Vixie Cron is a command scheduler with extended syntax over cron.
Vulnerable: < 4.1-r10
Unaffected: >= 4.1-r10
Architectures: All supported architectures
During an internal audit, Raphael Marichez of the Gentoo Linux Security Team found that Vixie Cron has weak permissions set on Gentoo, allowing for a local user to create hard links to system and users cron files, while a st_nlink check in database.c will generate a superfluous error.
Depending on the partitioning scheme and the "cron" group membership, a malicious local user can create hard links to system or users cron files that will trigger the st_link safety check and prevent the targeted cron file from being run from the next restart or database reload.
There is no known workaround at this time.
All Vixie Cron users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=sys-process/vixie-cron-4.1-r10"