Adsons

    SciLinux: Moderate: gcc security and bug fix update

    Date09 May 2007
    46
    Posted ByLinuxSecurity Advisories
    J=FCrgen Weigert discovered a directory traversal flaw in fastjar. An attacker could create a malicious JAR file which, if unpacked using fastjar, could write to any files the victim had write access to. (CVE-2006-3619) [More...]
    Date:         Wed, 9 May 2007 15:12:51 -0500
    Reply-To:     Connie Sieh 
    Sender:       Security Errata for Scientific Linux
                  
    From:         Connie Sieh 
    Subject:      Security ERRATA for SL4 gcc i386/x86_64
    Comments: To: scientific 
    MIME-version: 1.0
    Content-type: multipart/mixed; boundary="Boundary_(ID_CQ84LyCNRNJKRQpy6bO1eg)"
    
      This message is in MIME format.  The first part should be readable text,
      while the remaining parts are likely unreadable without MIME-aware tools.
    
    --Boundary_(ID_CQ84LyCNRNJKRQpy6bO1eg)
    Content-type: TEXT/PLAIN; format=flowed; charset=ISO-8859-1
    Content-transfer-encoding: QUOTED-PRINTABLE
    
    Synopsis:          Moderate: gcc security and bug fix update
    Issue date:        2007-05-01
    CVE Names:         CVE-2006-3619
    
    J=FCrgen Weigert discovered a directory traversal flaw in fastjar. An
    attacker could create a malicious JAR file which, if unpacked using
    fastjar, could write to any files the victim had write access to.
    (CVE-2006-3619)
    
    SRPMS:
     =09gcc-3.4.6-8.src.rpm
    
    i386:
     =09cpp-3.4.6-8.i386.rpm
     =09gcc-3.4.6-8.i386.rpm
     =09gcc-c++-3.4.6-8.i386.rpm
     =09gcc-g77-3.4.6-8.i386.rpm
     =09gcc-gnat-3.4.6-8.i386.rpm
     =09gcc-java-3.4.6-8.i386.rpm
     =09gcc-objc-3.4.6-8.i386.rpm
     =09libf2c-3.4.6-8.i386.rpm
     =09libgcc-3.4.6-8.i386.rpm
     =09libgcj-3.4.6-8.i386.rpm
     =09libgcj-devel-3.4.6-8.i386.rpm
     =09libgnat-3.4.6-8.i386.rpm
     =09libobjc-3.4.6-8.i386.rpm
     =09libstdc++-3.4.6-8.i386.rpm
     =09libstdc++-devel-3.4.6-8.i386.rpm
    
    x86_64:
     =09cpp-3.4.6-8.x86_64.rpm
     =09gcc-3.4.6-8.x86_64.rpm
     =09gcc-c++-3.4.6-8.x86_64.rpm
     =09gcc-g77-3.4.6-8.x86_64.rpm
     =09gcc-gnat-3.4.6-8.x86_64.rpm
     =09gcc-java-3.4.6-8.x86_64.rpm
     =09gcc-objc-3.4.6-8.x86_64.rpm
     =09libf2c-3.4.6-8.i386.rpm
     =09libf2c-3.4.6-8.x86_64.rpm
     =09libgcc-3.4.6-8.i386.rpm
     =09libgcc-3.4.6-8.x86_64.rpm
     =09libgcj-3.4.6-8.i386.rpm
     =09libgcj-3.4.6-8.x86_64.rpm
     =09libgcj-devel-3.4.6-8.x86_64.rpm
     =09libgnat-3.4.6-8.i386.rpm
     =09libgnat-3.4.6-8.x86_64.rpm
     =09libobjc-3.4.6-8.i386.rpm
     =09libobjc-3.4.6-8.x86_64.rpm
     =09libstdc++-3.4.6-8.i386.rpm
     =09libstdc++-3.4.6-8.x86_64.rpm
     =09libstdc++-devel-3.4.6-8.i386.rpm
     =09libstdc++-devel-3.4.6-8.x86_64.rpm
    
    -Connie Sieh
    -Troy Dawson
    
    
    --Boundary_(ID_CQ84LyCNRNJKRQpy6bO1eg)--
    

    Comments powered by CComment

    Sidebar Ad

    LinuxSecurity Poll

    Does your company/organization utilize open-source software?

    Message!

    Poll results are hidden from public viewing.

    You are not authorized to vote on this poll.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /component/communitypolls/?task=poll.vote
    5
    radio
    bottom200

    Advisories