|
Home Forum Radio Memberlist Help Search Quick Links | |
| Forum Index » Operating Systems » Linux » Mandriva- Advisories MDKSA-2006:190: Updated mutt packages fix multiple vulnerabilities |
| Linux All distros and thier applications |
 |
 |
|
Thread Tools | Display Modes |  |
|
#1
10-27-2006, 06:04 PM
|
||||
|
||||
|
Mandriva- Advisories MDKSA-2006:190: Updated mutt packages fix multiple vulnerabilities
Advisories MDKSA-2006:190: Updated mutt packages fix multiple vulnerabilities
A race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems. (CVE-2006-5297) The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls. (CVE-2006-5298) Updated packages have been patched to correct these issues. http://mandrivausers.org/index.php?showtopic=36394 Array Fri, 27 Oct 2006 22:49:01 +0000 
|
 Posted |
|
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
|
||
|
|
|
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
