CVE-2006-2916

NameCVE-2006-2916
Descriptionartswrapper in aRts, when running setuid root on Linux 2.6.0 or later versions, does not check the return value of the setuid function call, which allows local users to gain root privileges by causing setuid to fail, which prevents artsd from dropping privileges.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs374003

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
artssourcesarge(not affected)
artssource(unstable)1.5.3-2low374003

Notes

[sarge] - arts <not-affected> (Not setuid root in Debian)
artswrapper is not suid root by default, but README.Debian describes it
Search for package or bug name: Reporting problems