ed symlink attack

Ben Pfaff pfaffben@msu.edu
28 Nov 2000 22:53:10 -0500

Previous message: CGIs with Apache on Debian
Next message: ed symlink attack
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hey Ed, did you notice that someone found that you have a
security hole?  Make sure to upgrade yourself quickly before it
gets exploited!

Ben

Original message:
----------------------------------------------------------------------
Date: Wed, 29 Nov 2000 02:14:47 +0100
From: Wichert Akkerman <wichert@cistron.nl>
To: debian-security-announce@lists.debian.org

Package        : ed
Problem type   : symlink attack
Debian-specific: no

Alan Cox discovered that GNU ed (a classed line editor tool)
created temporary files unsafely. This has been fixed in version
0.2-18.1.

[much snippage]
----------------------------------------------------------------------

Previous message: CGIs with Apache on Debian
Next message: ed symlink attack
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]