Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200407-08 Normal: OpenSSH Key Disclosure Vulnerability

gentoo
Calendar Grey July 8, 2004
Dist Gentoo Esm H88
System Alert: Vulnerability in temporary file management allows unauthorized file replacement. Please update to the most recent version for enhanced protection.
Shorewall contains a bug in the code handling the creation of temporary files and directories

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200407-07
                                            https://security.gentoo.org/

  Severity: Normal
     Title: Shorewall : Insecure temp file handling
      Date: July 08, 2004
      Bugs: #55675
        ID: 200407-07


Synopsis
=======
Shorewall contains a bug in the code handling the creation of temporary
files and directories. This can allow a non-root user to overwrite
arbitrary system files.

Background
=========
Shorewall is a high level tool for configuring Netfilter, the firewall
facility included in the Linux Kernel.

Affected packages
================
    -------------------------------------------------------------------
     Package                 /   Vulnerable   /             Unaffected
    -------------------------------------------------------------------
  1  net-firewall/shorewall      <= 1.4.10c                 >= 1.4.10f

==========
Shorewall uses temp...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory Gentoo file handling temporary files overwrite risk shorewall normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo file handling temporary files overwrite risk shorewall normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here