Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Gentoo Linux: GLSA-202311-10 Important: SystemD Vulnerability Mitigation

gentoo
Calendar Grey April 26, 2005
Scroller Gentoo
The Rootkit Hunter tool contains a security flaw associated with symlink vulnerabilities, risking unauthorized file alterations. Update your software now to eliminate this threat!
Rootkit Hunter is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

Summary

Gentoo Linux Security Advisory GLSA 200504-25 https://security.gentoo.org/ Severity: Normal Title: Rootkit Hunter: Insecure temporary file creation Date: April 26, 2005 Bugs: #90007 ID: 200504-25

Synopsis ======= Rootkit Hunter is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.
Background ========= Rootkit Hunter is a scanning tool to detect rootkits, backdoors and local exploits on a local machine. Rootkit Hunter uses downloaded data files to check file integrity. These files are updated via the check_update.sh script.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-forensics/rkhunter < 1.2.3-r1 >= 1.2.3-r1
======...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
important
Lowest
Low
Medium
High
Critical

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround