There is a group-utmp-to-root privilege escalation vulnerability in
/bin/login in Debian, and I expect in all other Linux distros.
For details and exploit please see
http://bugs.debian.org/505271
Currently am not aware of any group utmp issues (that could be
leveraged to get root).
Cheers,
I'm glad you finally seemed to make the 'bug' fixing team of Debian aware of
security issues. I'm just glad I personally haven't seem this much scrutiny
from the security team or my faith in Debian maintainers in all areas would
significantly drop even more. Nice find.
