{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2011-03-01T00:00:00.000Z","descriptions":[{"lang":"en","value":"Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privileges via a crafted controller list on the command line of an application.  NOTE: it is not clear whether this issue crosses privilege boundaries."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2011-04-09T09:00:00.000Z","orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat"},"references":[{"name":"43758","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/43758"},{"tags":["x_refsource_CONFIRM"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=678107"},{"name":"44093","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/44093"},{"name":"46729","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/46729"},{"tags":["x_refsource_CONFIRM"],"url":"http://sourceforge.net/projects/libcg/files/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2/download"},{"tags":["x_refsource_CONFIRM"],"url":"http://libcg.git.sourceforge.net/git/gitweb.cgi?p=libcg/libcg%3Ba=commit%3Bh=5ae8aea1ecd60c439121d3329d8eaabf13d292c1"},{"name":"43891","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/43891"},{"name":"DSA-2193","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2011/dsa-2193"},{"name":"openSUSE-SU-2011:0316","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://lists.opensuse.org/opensuse-updates/2011-04/msg00027.html"},{"name":"FEDORA-2011-2631","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056683.html"},{"name":"ADV-2011-0679","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2011/0679"},{"name":"ADV-2011-0774","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2011/0774"},{"name":"RHSA-2011:0320","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://www.redhat.com/support/errata/RHSA-2011-0320.html"},{"name":"43611","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/43611"},{"name":"FEDORA-2011-2638","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056734.html"},{"name":"1025158","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id?1025158"}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T22:14:27.009Z"},"title":"CVE Program Container","references":[{"name":"43758","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/43758"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=678107"},{"name":"44093","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/44093"},{"name":"46729","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/46729"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://sourceforge.net/projects/libcg/files/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2/download"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://libcg.git.sourceforge.net/git/gitweb.cgi?p=libcg/libcg%3Ba=commit%3Bh=5ae8aea1ecd60c439121d3329d8eaabf13d292c1"},{"name":"43891","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/43891"},{"name":"DSA-2193","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2011/dsa-2193"},{"name":"openSUSE-SU-2011:0316","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://lists.opensuse.org/opensuse-updates/2011-04/msg00027.html"},{"name":"FEDORA-2011-2631","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056683.html"},{"name":"ADV-2011-0679","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2011/0679"},{"name":"ADV-2011-0774","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2011/0774"},{"name":"RHSA-2011:0320","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://www.redhat.com/support/errata/RHSA-2011-0320.html"},{"name":"43611","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/43611"},{"name":"FEDORA-2011-2638","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056734.html"},{"name":"1025158","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id?1025158"}]}]},"cveMetadata":{"assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","cveId":"CVE-2011-1006","datePublished":"2011-03-22T17:00:00.000Z","dateReserved":"2011-02-14T00:00:00.000Z","dateUpdated":"2024-08-06T22:14:27.009Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}