Gentoo 200410-19 Normal: glibc Symlink Risk in catchsegv Script

gentoo

October 21, 2004

The catchsegv script in the glibc package is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files with the rights of the user running the s...

Summary

Gentoo Linux Security Advisory GLSA 200410-19 https://security.gentoo.org/ Severity: Normal Title: glibc: Insecure tempfile handling in catchsegv script Date: October 21, 2004 Bugs: #66358 ID: 200410-19

Synopsis ======= The catchsegv script in the glibc package is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files with the rights of the user running the script.
Background ========= glibc is a package that contains the GNU C library.
Affected packages ================ ------------------------------------------------------------------- Package ...

Read the Full Advisory

Topics Covered

security advisory Gentoo glibc symlink normal severity catchsegv

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics Covered

security advisory Gentoo glibc symlink normal severity catchsegv

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks