Debian Logrotate vulnerabilities

CVE-2022-1348 [MEDIUM] CVE-2022-1348: logrotate - A vulnerability was found in logrotate in how the state file is created. The sta... A vulnerability was found in logrotate in how the state file is created. The state file is used to prevent parallel executions of multiple instances of logrotate by acquiring and releasing a file lock. When the state file does not exist, it is created with world-readable permission, allowing an unprivileged user to lock the state file, stopping any rotation. This

CVE-2011-1548 [MEDIUM] CVE-2011-1548: logrotate - The default configuration of logrotate on Debian GNU/Linux uses root privileges ... The default configuration of logrotate on Debian GNU/Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as demonstrated by /var/log/postgresql/. Scope: local bookworm: resolved (fixed in 3

CVE-2011-1154 [MEDIUM] CVE-2011-1154: logrotate - The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allo... The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name. Scope: local bookworm: resolved (fixed in 3.8.0-1) bullseye: resol

CVE-2011-1098 [LOW] CVE-2011-1098: logrotate - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.... Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place. Scope: local bookworm: resolved (fixed in 3.8.0-1) bullseye: resolved (fixed in 3.8.0-1) forky: resolved (fixed in 3.8.0-1) sid: resolved (fixed in 3.8.0-1) trixie: resolved (

CVE-2011-1549 [MEDIUM] CVE-2011-1549: logrotate - The default configuration of logrotate on Gentoo Linux uses root privileges to p... The default configuration of logrotate on Gentoo Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as demonstrated by directories under /var/log/ for packages. Scope: local bookworm: reso

CVE-2011-1550 [MEDIUM] CVE-2011-1550: logrotate - The default configuration of logrotate on SUSE openSUSE Factory uses root privil... The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as demonstrated by directories for the (1) cobbler, (2) inn, (3) safte-monitor,

CVE-2011-1155 [LOW] CVE-2011-1155: logrotate - The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allo... The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service (rotation outage) via a (1) \n (newline) or (2) \ (backslash) character in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name. Scope: local bookworm: