DSA-4159-1 remctl -- remctlID: oval:org.secpod.oval:def:603340 | Date: (C)2018-04-02 (M)2023-11-13 |
Class: PATCH | Family: unix |
Santosh Ananthakrishnan discovered a use-after-free in remctl, a server for Kerberos-authenticated command execution. If the command is configured with the sudo option, this could potentially result in the execution of arbitrary code. The oldstable distribution is not affected.
Product: |
php-remctl |
remctl-client |
libnet-remctl-perl |
libremctl1 |
ruby-remctl |
python-remctl |
remctl-server |
libremctl-dev |