Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

Gentoo: GLSA-202303-05 Normal: Mitigation for R Directory Traversal Issue

gentoo
Calendar Grey September 22, 2008
Dist Gentoo Esm H88
Gentoo GLSA 202204-02 indicates Python's susceptibility to buffer overflow exploits via improper error handling. Immediate action advised.
R is vulnerable to symlink attacks due to an insecure usage of temporary files.

Summary

Gentoo Linux Security Advisory GLSA 200809-13 https://security.gentoo.org/ Severity: Normal Title: R: Insecure temporary file creation Date: September 22, 2008 Bugs: #235822 ID: 200809-13

Synopsis ======= R is vulnerable to symlink attacks due to an insecure usage of temporary files.
Background ========= R is a GPL licensed implementation of S, a language and environment for statistical computing and graphics.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-lang/R < 2.7.1 >= 2.7.1
========== Dmitry E. Oboukhov reported that the "javareconf" script uses temporary files in an insecure manner.
Impact ===== A local attacker cou...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo temporary file symlink attack insecure file handling normal severity r application

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo temporary file symlink attack insecure file handling normal severity r application

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here