CVE-2011-2729 Information
Share on:Description
native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons as used in Apache Tomcat 5.5.32 through 5.5.33 6.0.30 through 6.0.32 and 7.0.x before 7.0.20 on Linux does not drop capabilities which allows remote attackers to bypass read permissions for files via a request to an application.
Reference
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00024.html http://mail-archives.apache.org/mod_mbox/commons-dev/201108.mbox/[email protected] http://mail-archives.apache.org/mod_mbox/tomcat-announce/201108.mbox/[email protected] http://marc.info/?l=bugtraq&m=132215163318824&w=2 http://marc.info/?l=bugtraq&m=133469267822771&w=2 http://marc.info/?l=bugtraq&m=136485229118404&w=2 http://marc.info/?l=bugtraq&m=139344343412337&w=2 http://people.apache.org/~markt/patches/2011-08-12-cve2011-2729-tc5.patch http://secunia.com/advisories/46030 http://secunia.com/advisories/57126 http://securitytracker.com/id?1025925 http://svn.apache.org/viewvc?view=revision&revision=1152701 http://svn.apache.org/viewvc?view=revision&revision=1153379 http://svn.apache.org/viewvc?view=revision&revision=1153824 http://tomcat.apache.org/security-5.html http://tomcat.apache.org/security-6.html http://tomcat.apache.org/security-7.html http://www.redhat.com/support/errata/RHSA-2011-1291.html http://www.redhat.com/support/errata/RHSA-2011-1292.html http://www.securityfocus.com/archive/1/519263/100/0/threaded http://www.securityfocus.com/bid/49143 https://bugzilla.redhat.com/show_bug.cgi?id=730400 https://exchange.xforce.ibmcloud.com/vulnerabilities/69161 https://issues.apache.org/jira/browse/DAEMON-214 https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@3Cdev.tomcat.apache.org3E https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@3Cdev.tomcat.apache.org3E https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@3Cdev.tomcat.apache.org3E https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@3Cdev.tomcat.apache.org3E https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14743 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A19450