ID CVE-2011-3590
Summary The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive information by inspecting the file content.
References
Vulnerable Configurations
  • cpe:2.3:a:redhat:kexec-tools:*:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:kexec-tools:*:*:*:*:*:*:*:*
CVSS
Base: 5.7 (as of 06-03-2014 - 04:32)
Impact:
Exploitability:
CWE CWE-310
CAPEC
  • Signature Spoofing by Key Recreation
    An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Access
VectorComplexityAuthentication
ADJACENT_NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE NONE NONE
cvss-vector via4 AV:A/AC:M/Au:N/C:C/I:N/A:N
redhat via4
advisories
  • bugzilla
    id 739050
    title scriptlet failure in rpm package fence-agents
    oval
    AND
    • comment kexec-tools is earlier than 0:2.0.0-209.el6
      oval oval:com.redhat.rhsa:tst:20111532005
    • comment kexec-tools is signed with Red Hat redhatrelease2 key
      oval oval:com.redhat.rhsa:tst:20111532006
    • OR
      • comment Red Hat Enterprise Linux 6 Client is installed
        oval oval:com.redhat.rhba:tst:20111656001
      • comment Red Hat Enterprise Linux 6 Server is installed
        oval oval:com.redhat.rhba:tst:20111656002
      • comment Red Hat Enterprise Linux 6 Workstation is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • comment Red Hat Enterprise Linux 6 ComputeNode is installed
        oval oval:com.redhat.rhba:tst:20111656004
    rhsa
    id RHSA-2011:1532
    released 2011-12-06
    severity Moderate
    title RHSA-2011:1532: kexec-tools security, bug fix, and enhancement update (Moderate)
  • bugzilla
    id 748319
    title fsck: WARNING: couldn't open /etc/fstab: No such file or directory
    oval
    AND
    • comment Red Hat Enterprise Linux 5 is installed
      oval oval:com.redhat.rhba:tst:20070331001
    • comment kexec-tools is earlier than 0:1.102pre-154.el5
      oval oval:com.redhat.rhsa:tst:20120152002
    • comment kexec-tools is signed with Red Hat redhatrelease key
      oval oval:com.redhat.rhsa:tst:20120152003
    rhsa
    id RHSA-2012:0152
    released 2012-02-21
    severity Moderate
    title RHSA-2012:0152: kexec-tools security, bug fix, and enhancement update (Moderate)
rpms
  • kexec-tools-0:2.0.0-209.el6
  • kexec-tools-0:1.102pre-154.el5
refmap via4
confirm https://bugzilla.redhat.com/show_bug.cgi?id=716439
Last major update 06-03-2014 - 04:32
Published 15-02-2014 - 14:57
Back to Top