Key Vulnerability Information CVE ID: CVE-2011-4930, CVE-2011-4930 Bug ID: 759548 Vulnerability Type: Multiple format string flaws Product: Condor Component: Condor Reported Date: 2011-12-02 16:28 UTC Status: CLOSED ERRATA Priority: medium Severity: medium OS: Linux Assignee: Red Hat Product Security CVE Identifier: CVE-2011-4930, CVE-2011-4930 Description of Vulnerability Multiple format string flaws were found in Condor: _a)_ When a remote Condor user requested the XML message log format in a Condor submit job and attempted to write a specially-crafted message into the user log file via the tool, it could cause the daemon to crash. This flaw had the potential to allow arbitrary code execution with the privileges of the user. It could also potentially prevent other Condor jobs from being scheduled and executed. _b)_ A request by a remote Condor user to transfer a file with a specially-crafted filename could lead to a child process of the daemon crashing. If this process were repeated, it could cause the daemon to crash while attempting to handle the request. On systems where the protection mechanism was not enabled, this flaw could lead to arbitrary code execution. Otherwise, it would result in the Condor service crashing. Affected Versions Red Hat Enterprise MRG versions 1.3 and 2.0 Fedora releases 15 and 16 Patches and Advisories RHSA-2012:0100: Addresses the issue for RHEL-5 v.2 RHSA-2012:0099: Addresses the issue for RHEL-6 v.2 Additional Information The vulnerabilities discussed here also affected the package shipped with all versions of Fedora. The flaws were fixed upstream by a specific patch [2] that addressed several compiler warning issues. The bug affecting Fedora (all versions) was tracked separately under Bug #787804. --- The advisory and vulnerability information above have been summarized from the provided screenshot.