Create an account

Subscribe to LWN

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Weekly edition	Kernel	Security	Distributions	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ

xen-utils: insecure temp files

Package(s):

xen-utils

CVE #(s):

CVE-2007-3919

Created:

October 25, 2007

Updated:

May 16, 2008

Description:

The xen-utils collection of XEN administrative tools uses temporary files insecurely. Local users can use this to truncate arbitrary files.

Alerts:

Debian	DSA-1395-1	2007-10-25
Fedora	FEDORA-2007-737	2007-11-05
Red Hat	RHSA-2008:0194-01	2008-05-13
CentOS	CESA-2008:0194	2008-05-16

(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.