Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: GLSA-200901-14 Normal: Scilab Insecure File Usage Risk

gentoo
Calendar Grey January 21, 2009
Dist Gentoo Esm H88
The inadequate management of files in Scilab exposes it to local symlink vulnerabilities. It is crucial to update the software to mitigate potential security threats.
An insecure temporary file usage has been reported in Scilab, allowing for symlink attacks.

Summary

Gentoo Linux Security Advisory GLSA 200901-14 https://security.gentoo.org/ Severity: Normal Title: Scilab: Insecure temporary file usage Date: January 21, 2009 Bugs: #245922 ID: 200901-14

Synopsis ======= An insecure temporary file usage has been reported in Scilab, allowing for symlink attacks.
Background ========= Scilab is a scientific software package for numerical computations.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sci-mathematics/scilab < 4.1.2-r1 >= 4.1.2-r1
========== Dmitry E. Oboukhov reported an insecure temporary file usage within the scilink, scidoc and scidem scripts.
Impact ===== A local attacker could perform symlink attacks to overwrite a...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo symlink attack normal severity insecure file usage Scilab

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo symlink attack normal severity insecure file usage Scilab

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here