[ MDVSA-2009:004 ] pam_mount

Kirjoittaja **dude67** » 11 Tammi 2009, 18:16

passwdehd script in pam_mount would allow local users to overwrite
arbitrary files via a symlink attack on a temporary file.

The updated packages have been patched to prevent this.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cg ... -2008-5138
_______________________________________________________________________

[ MDVSA-2009:004 ] pam_mount

[ MDVSA-2009:004 ] pam_mount

Paikallaolijat