CVE-2012-5390

NameCVE-2012-5390
DescriptionThe standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
condor (PTS)forky, sid, trixie23.9.6+dfsg-2.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
condorsource(unstable)(not affected)

Notes

- condor <not-affected> (standard universe is disabled in the Debian package, see bug #697936)
http://research.cs.wisc.edu/htcondor/security/vulnerabilities/CONDOR-2012-0003.html
Search for package or bug name: Reporting problems