CVE-2012-2653 (retired)

Priority
Description
arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others,
does not properly drop supplementary groups, which might allow attackers to
gain root privileges by leveraging other vulnerabilities in the daemon.
Notes
tyhicksPer Debian BTS, "Found in version arpwatch/2.1a15-1.1"
Package
Upstream:released (2.1a15-1.2)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (2.1a15-1.2)
More Information

Updated: 2019-10-09 07:42:24 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)