From owner-freebsd-security@FreeBSD.ORG Tue Jul 18 11:59:05 2006 Return-Path: X-Original-To: freebsd-security@FreeBSD.ORG Delivered-To: freebsd-security@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 94AD216A4DA for ; Tue, 18 Jul 2006 11:59:05 +0000 (UTC) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (lurza.secnetix.de [83.120.8.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id A72BF43D45 for ; Tue, 18 Jul 2006 11:59:04 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (yburah@localhost [127.0.0.1]) by lurza.secnetix.de (8.13.4/8.13.4) with ESMTP id k6IBwsMI099626 for ; Tue, 18 Jul 2006 13:59:00 +0200 (CEST) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.13.4/8.13.1/Submit) id k6IBwsZJ099625; Tue, 18 Jul 2006 13:58:54 +0200 (CEST) (envelope-from olli) Date: Tue, 18 Jul 2006 13:58:54 +0200 (CEST) Message-Id: <200607181158.k6IBwsZJ099625@lurza.secnetix.de> From: Oliver Fromme To: freebsd-security@FreeBSD.ORG X-Newsgroups: list.freebsd-security User-Agent: tin/1.8.0-20051224 ("Ronay") (UNIX) (FreeBSD/4.11-STABLE (i386)) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.1.2 (lurza.secnetix.de [127.0.0.1]); Tue, 18 Jul 2006 13:59:00 +0200 (CEST) X-Mailman-Approved-At: Tue, 18 Jul 2006 12:01:35 +0000 Cc: Subject: Vulnerability in vixie cron? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: freebsd-security@FreeBSD.ORG List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Jul 2006 11:59:05 -0000 Hi, Recently there have been advisories and patches for SuSE and RedHat (and probably a few others) regarding a vulnerability in Vixie Cron. The details say that there's insufficient checking of the return value of setuid, which can lead to priviledge escalation and lets users run cron jobs with root priviledges. As far as I know, FreBSD also uses Vixie Cron (at least the cron(8) manpage says so). However, I haven't seen any FreeBSD advisory regarding this, so I wonder if FreeBSD's cron isn't affected for some reason? Any information would be appreciated. Best regards Oliver PS: Here's the description of the RedHat advisory: http://rhn.redhat.com/errata/RHSA-2006-0539.html -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. (On the statement print "42 monkeys" + "1 snake":) By the way, both perl and Python get this wrong. Perl gives 43 and Python gives "42 monkeys1 snake", when the answer is clearly "41 monkeys and 1 fat snake". -- Jim Fulton