Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA-200410-11 Minimal Severity: Nginx Path Traversal Vulnerability

gentoo
Calendar Grey October 10, 2004
Dist Gentoo Esm H88
Debian DSA-2004-10 highlights minimal risk symlink vulnerability in libxml2. Update advised for enhanced security.
The gettext utility is vulnerable to symlink attacks, potentially allowing a local user to overwrite or change permissions on arbitrary files with the rights of the user running ge...

Summary

Gentoo Linux Security Advisory GLSA 200410-10 https://security.gentoo.org/ Severity: Low Title: gettext: Insecure temporary file handling Date: October 10, 2004 Bugs: #66355 ID: 200410-10

Synopsis ======= The gettext utility is vulnerable to symlink attacks, potentially allowing a local user to overwrite or change permissions on arbitrary files with the rights of the user running gettext, which could be the root user.
Background ========= gettext is a set of utilities for the GNU Translation Project which provides a set of tools and documentation to help produce multi-lingual messages in programs.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-devel/gettext < 0.12.1-r2 ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo symlink attack low severity temporary files file permissions gettext

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory gentoo symlink attack low severity temporary files file permissions gettext

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here