Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Debian: DSA-011-1 Critical: Mgetty Insecure Tempfile Attack

debian
Calendar Grey January 10, 2001
Debian Logo
Debian's DSA-011-1 highlights critical mgetty risk from insecure tempfile handling; immediate update recommended.
Immunix reports that mgetty does not create temporary files in a securemanner, which could lead to a symlink attack.

Summary

Immunix reports that mgetty does not create temporary files in a secure
manner, which could lead to a symlink attack. This has been corrected
in mgetty 1.1.21-3potato1

We recommend you upgrade your mgetty package immediately.

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 2.2 alias potato

Potato was released for the alpha, arm, i386, m68k, powerpc and sparc
architectures.

Source archives:

MD5 checksum: 7fa9561fad8dbe7a4a288c8135b33174

MD5 checksum: 0d4b5d68d1bb236970e1fe5f6ae02264

MD5 checksum: 41b23fb60b123a25179067bb0711b935

Architecture-independent files:

MD5 checksum: c406e21ea10a22497b4f8d6a0473b537

Alpha architecture:

MD5 checksum: 835087610bd00ccd5a40e01936e61bb2

MD5 checksum: e2958b3b698687bfc9de34742c1b90b6

MD5 checksum: 1c0981919...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.