Explore top 10 tips to secure your open-source projects now. Read More
×-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory GLSA 200803-11
https://security.gentoo.org/
Severity: Normal
Title: Vobcopy: Insecure temporary file creation
Date: March 05, 2008
Bugs: #197578
ID: 200803-11
Synopsis
=======
Vobcopy uses temporary files in an insecure manner, allowing for a
symlink attack.
Background
=========
Vobcopy is a tool for decrypting and copying DVD .vob files to a hard
disk.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 media-video/vobcopy < 1.1.0 >= 1.1.0
==========
Joey Hess reported that vobcopy appends data to the file
"/tmp/vobcopy.bla" in an insecure manner.
Impact
=====
A local attacker could ...Read the Full Advisory
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.