Bug 21085

Summary: CVE-2009-1894
Product: Branch 4.1 Reporter: Igor Zubkov <icesik>
Component: pulseaudioAssignee: Sergey Bolshakov <sbolshakov>
Status: CLOSED NOTABUG QA Contact: qa-4.1 <qa-4.1>
Severity: normal    
Priority: P3 CC: aen, mike
Version: unspecified   
Hardware: all   
OS: Linux   
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1894

Description Igor Zubkov 2009-08-16 03:06:49 MSD 
Race condition in PulseAudio 0.9.9, 0.9.10, and 0.9.14 allows local users to gain privileges via vectors involving creation of a hard link, related to the application setting LD_BIND_NOW to 1, and then calling execv on the target of the /proc/self/exe symlink.
Comment 1 AEN 2009-08-16 03:20:49 MSD 
(В ответ на комментарий №0)
> Race condition in PulseAudio 0.9.9, 0.9.10, and 0.9.14 
0.9.10 в бранче 4.1, другие бранчи и Сизиф не подвержены.
Comment 2 Sergey Bolshakov 2009-08-16 14:19:42 MSD 
описанный сценарий возможен, если на pulseaudio установить suid bit,
в пакете его там нет.