关键漏洞信息 CVE ID: CVE-2011-4930, CVE-2011-4930 Bug ID: 759548 Vulnerability Type: Multiple format string flaws Product: Condor Component: Condor Reported Date: 2011-12-02 16:28 UTC Status: CLOSED ERRATA Priority: medium Severity: medium OS: Linux Assignee: Red Hat Product Security CVE Identifier: CVE-2011-4930, CVE-2011-4930 Description of Vulnerability Multiple format string flaws were found in Condor: _a)_ When the XML message log format was requested in Condor submit job by a remote Condor user, and that user attempted to write a specially-crafted message into the user log file via the tool, it could lead to the daemon crashing. This had the potential for arbitrary code execution with the privileges of the user. It could also potentially prevent other Condor jobs from being scheduled and executed. _b)_ A request for file transfer by a remote Condor user to transmit a file with a specially-crafted name could lead to a child process of the daemon crashing. If the process were repeated, it could cause the daemon to crash as it attempted to handle the request. On systems where the protection mechanism was not enabled, this flaw could lead to arbitrary code execution. Otherwise, it would cause the Condor service to crash. Affected Versions Red Hat Enterprise MRG versions 1.3 and 2.0 Fedora releases 15 and 16 Patches and Advisories RHSA-2012:0100: Addresses the issue for RHEL-5 v.2 RHSA-2012:0099: Addresses the issue for RHEL-6 v.2 Additional Information vulnerabilities discussed here also affected the package shipped with Fedora all versions flaws had been fixed in upstream by a specific patch [2] that addresses a number of compiler warning problems bug identified as affecting Fedora all was tracked separately under Bug #787804 --- The advisory and vulnerability information above have been summarized from the provided screenshot.