FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
0cf3480d-5fdf-11d9-b721-00065be4b5b6helvis -- arbitrary file deletion problem

The setuid root elvprsv utility, used to preserve recovery helvis files, can be abused by local users to delete with root privileges.

The problem is that elvprsv deletes files when it thinks they have become corrupt. When elvprsv is pointed to a normal file then it will almost always think the file is corrupt and deletes it. This behavior may be exploited by local attackers to delete critical files.


Discovery 2004-11-24
Entry 2005-01-10
Modified 2005-01-19
ko-helvis
<= 1.8h2_1

helvis
<= 1.8h2_1

CVE-2005-0120
http://people.freebsd.org/~niels/ports/korean/helvis/issues.txt
bb99f803-5fde-11d9-b721-00065be4b5b6helvis -- information leak vulnerabilities

Once a recovery file has been preserved by the setuid root elvprsv utility it is placed in a worldreadable directory with worldreadable permissions. This possibly allows sensitive information to leak.

In addition to this information leak, it is possible for users to recover files that belong to other users by using elvrec, another setuid root binary.


Discovery 2004-11-24
Entry 2005-01-10
Modified 2005-01-19
ko-helvis
<= 1.8h2_1

helvis
<= 1.8h2_1

CVE-2005-0118
CVE-2005-0119
http://people.freebsd.org/~niels/ports/korean/helvis/issues.txt