FreeBSD Local Security Checks : FreeBSD Security Advisory (FreeBSD-SA-10:04.jail.asc)

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.67508

Kategorie: FreeBSD Local Security Checks

Titel: FreeBSD Security Advisory (FreeBSD-SA-10:04.jail.asc)

Zusammenfassung: NOSUMMARY

Beschreibung: Description:
The remote host is missing an update to the system
as announced in the referenced advisory FreeBSD-SA-10:04.jail.asc

The jail(2) system call allows a system administrator to lock a process
and all of its descendants inside an environment with a very limited
ability to affect the system outside that environment, even for
processes with superuser privileges. It is an extension of, but
far more powerful than, the traditional UNIX chroot(2) system call.

By design, neither the chroot(2) nor the jail(2) system call modify
existing open file descriptors of the calling process, in order to
allow programmers to make fine grained access control and privilege
separation.

The jail(8) utility creates a new jail or modifies an existing jail,
optionally imprisoning the current process (and future descendants)
inside it.

The jail(8) utility does not change the current working directory while
imprisoning. The current working directory can be accessed by its
descendants.

Solution:
Upgrade your system to the appropriate stable release
or security branch dated after the correction date

http://www.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-10:04.jail.asc

CVSS Score:
3.3

CVSS Vector:
AV:L/AC:M/Au:N/C:P/I:P/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2010-2022
BugTraq ID: 40399
http://www.securityfocus.com/bid/40399
FreeBSD Security Advisory: FreeBSD-SA-10:04
http://security.FreeBSD.org/advisories/FreeBSD-SA-10:04.jail.asc
http://securitytracker.com/id?1024038
http://www.vupen.com/english/advisories/2010/1247

Copyright Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.67508
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-10:04.jail.asc)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:04.jail.asc The jail(2) system call allows a system administrator to lock a process and all of its descendants inside an environment with a very limited ability to affect the system outside that environment, even for processes with superuser privileges. It is an extension of, but far more powerful than, the traditional UNIX chroot(2) system call. By design, neither the chroot(2) nor the jail(2) system call modify existing open file descriptors of the calling process, in order to allow programmers to make fine grained access control and privilege separation. The jail(8) utility creates a new jail or modifies an existing jail, optionally imprisoning the current process (and future descendants) inside it. The jail(8) utility does not change the current working directory while imprisoning. The current working directory can be accessed by its descendants. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date http://www.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-10:04.jail.asc CVSS Score: 3.3 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2022 BugTraq ID: 40399 http://www.securityfocus.com/bid/40399 FreeBSD Security Advisory: FreeBSD-SA-10:04 http://security.FreeBSD.org/advisories/FreeBSD-SA-10:04.jail.asc http://securitytracker.com/id?1024038 http://www.vupen.com/english/advisories/2010/1247
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com