aru Posted February 28, 2006 Report Share Posted February 28, 2006 Mandriva Advisories MDKSA-2006:051 : gettext Updated gettext packages fix temporary file vulnerabilities February 28th, 2006 The Trustix developers discovered temporary file vulnerabilities in the autopoint and gettextize scripts, part of GNU gettext.These scripts insecurely created temporary files which could allow a malicious user to overwrite another user's files via a symlink attack. The updated packages have been patched to address this issue. The released versions of Mandriva GNU/Linux affected are: CS3.0 MNF2.0 Full information about this advisory, including the updated packages, is available at: wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:051 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0966 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts