Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: 200404-08 High Risk: Automake Symbolic Link Attack

gentoo
Calendar Grey April 8, 2004
Dist Gentoo Esm H88
A serious security vulnerability has been discovered in GNU Automake related to symbolic links. Immediate updates are recommended. See the detailed report for more info
Automake may be vulnerable to a symbolic link attack which may allow an attacker to modify data or elevate their privileges.

Summary

Gentoo Linux Security Advisory GLSA 200404-08 https://security.gentoo.org/ Severity: High Title: GNU Automake symbolic link vulnerability
Date: April 08, 2004 Bugs: #45646 ID: 200404-08

Synopsis ======= Automake may be vulnerable to a symbolic link attack which may allow an attacker to modify data or elevate their privileges.
Background ========= Automake is a tool for automatically generating `Makefile.in' files which is often used in conjuction with Autoconf and other GNU Autotools to ease portability among applications. It also provides a standardized and light way of writing complex Makefiles through the use of many built-in macros.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity privilege escalation symbolic link automake

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity privilege escalation symbolic link automake

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here