Alerts This Week
Warning Icon 1 1,179
Alerts This Week
Warning Icon 1 1,179

Fedora: 2003-031 Moderate: XBoard Predictable File Overwrite Threat

fedora
Calendar Grey December 4, 2003
Dist Fedora Esm H88
XBoard versions 4.2.6 and prior possess a recognized vulnerability regarding file writing on Fedora platforms. To enhance your security, please update to version 4.2.7.
XBoard 4.2.6 and older contains a script which writes to a file in /tmp with a predictable filename

Summary

Xboard is an X Window System based graphical chessboard which can be

used with the GNUchess and Crafty chess programs, with Internet Chess

Servers (ICSs), with chess via email, or with your own saved games.

Install the xboard package if you need a graphical chessboard.

XBoard 4.2.6 and older contains a script which writes to a file in

/tmp with a predictable filename. Malicious users could use this

vulnerability to force XBoard users to overwrite any file writable

by them.

- update to 4.2.7

c9ee7f4bfdc30da49d4e4e968baf4512 SRPMS/xboard-4.2.7-1.src.rpm

ed2216de0ce24bf9d18423e5eb94d734 i386/xboard-4.2.7-1.i386.rpm

c22f3442cbd928378ace8d4aaaf4681f i386/debug/xboard-debuginfo-4.2.7-1.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

Topics%20covered

Topics Covered

security advisory moderate update Fedora file overwrite exploit fix XBoard

Change Log

References

Update Instructions

Version: 4.2.7
Release: 1
Summary: An X Window System graphical chessboard.

Topics%20covered

Topics Covered

security advisory moderate update Fedora file overwrite exploit fix XBoard

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here