User: Password:
|
|
Subscribe / Log in / New account

rPath alert rPSA-2007-0004-1 (bzip2)

From:  rPath Update Announcements <announce-noreply@rpath.com>
To:  security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject:  rPSA-2007-0004-1 bzip2
Date:  Tue, 09 Jan 2007 16:28:14 -0500
Cc:  full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, lwn@lwn.net

rPath Security Advisory: 2007-0004-1 Published: 2007-01-09 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Non-deterministic Unauthorized Access Updated Versions: bzip2=/conary.rpath.com@rpl:devel//1/1.0.4-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-200... https://issues.rpath.com/browse/RPL-921 Description: Previous versions of the bzip2 package are vulnerable to a race condition that allows local users to modify permissions on arbitrary files that the user running bzip2 is allowed to change.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds