Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA-200405-05 Normal: Utempter Symlink Overwrite Attack

gentoo
Calendar Grey May 13, 2004
Dist Gentoo Esm H88
Gentoo Linux community urged to update utempter following the detection of a symlink attack vulnerability, categorized as medium severity.
Utempter contains a vulnerability that may allow local users to overwrite arbitrary files via a symlink attack.

Summary

Gentoo Linux Security Advisory GLSA 200405-05 https://security.gentoo.org/ Severity: Normal Title: Utempter symlink vulnerability Date: May 13, 2004 Bugs: #49536 ID: 200405-05

Synopsis ======= Utempter contains a vulnerability that may allow local users to overwrite arbitrary files via a symlink attack.
Background ========= Utempter is an application that allows non-privileged apps to write utmp (login) info, which otherwise needs root access.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-apps/utempter < 0.5.5.4 >= 0.5.5.4
========== Utempter contains a vulnerability that may allow local users to overwrite arbitrary files via a symlink attack.
Impact =...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo file overwrite symlink attack normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo file overwrite symlink attack normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here