SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

Filter

oval:org.secpod.oval:def:602833
Ilja Van Sprundel discovered that the dmcrypt-get-device helper used to check if a given device is an encrypted device handled by devmapper, and used in eject, does not check return values from setuid and setgid when dropping privileges.

oval:org.secpod.oval:def:703542
eject: ejects CDs and operates CD-Changers under Linux Eject could be made to run programs as an administrator.

oval:org.secpod.oval:def:51756
eject: ejects CDs and operates CD-Changers under Linux Eject could be made to run programs as an administrator.


30479



423868



248364



909



195388



282