Rapid7 Vulnerability & Exploit Database

RHSA-2002:054: Race conditions in logwatch

Back to Search

RHSA-2002:054: Race conditions in logwatch

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
04/03/2002
Created
07/25/2018
Added
03/24/2010
Modified
07/04/2017

Description

Updated LogWatch packages are available that fix tmp file race conditions which can cause a local user to gain root privileges.

LogWatch is a customizable log analysis system which was available in Red Hat Powertools. Versions of LogWatch 2.1.1 and earlier have a vulnerability due to a race condition during the creation of a temporary directory. This vulnerability can allow a local user to gain root privileges. An additional race condition was found in versions of LogWatch 2.5 and earlier. Users should update to the errata packages containing Logwatch 2.6, which is not vulnerable to these issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2002-0162 and CAN-2002-0165 to these issues.

Solution(s)

  • redhat-upgrade-logwatch

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;