Paketname
xine-ui
Datum
2004-04-19
Advisory ID
MDKSA-2004:033
Betroffene Versionen
9.2 i586 , 9.2 amd64 , 10.0 i586

Problembeschreibung

Shaun Colley discovered a temporary file vulnerability in the xine-check script packaged in xine-ui. This problem could allow local attackers to overwrite arbitrary files with the privileges of the user invoking the script. The updated packages change the location of where temporary files are written to prevent this attack.

Aktualisierte Pakete

9.2 i586

 fd89a4277193fb04b9064e707f483c85  9.2/RPMS/xine-ui-0.9.22-5.1.92mdk.i586.rpm
908daf85477337315204d02247aa0bd8  9.2/RPMS/xine-ui-aa-0.9.22-5.1.92mdk.i586.rpm
26a9e7de5ef8789b379e4a5b5f649324  9.2/RPMS/xine-ui-fb-0.9.22-5.1.92mdk.i586.rpm
8abda9bffeebda43ae4ff1ce93370713  9.2/SRPMS/xine-ui-0.9.22-5.1.92mdk.src.rpm

9.2 amd64

 f6fe57ad2fa8d3920f6b53035e7e21fd  amd64/9.2/RPMS/xine-ui-0.9.22-5.1.92mdk.amd64.rpm
5e1271856904b37335d7a3452e68d89a  amd64/9.2/RPMS/xine-ui-aa-0.9.22-5.1.92mdk.amd64.rpm
8350075744c766b7c732b3678573e1f9  amd64/9.2/RPMS/xine-ui-fb-0.9.22-5.1.92mdk.amd64.rpm
8abda9bffeebda43ae4ff1ce93370713  amd64/9.2/SRPMS/xine-ui-0.9.22-5.1.92mdk.src.rpm

10.0 i586

 1714c3fa35832f5ada17d213af09b3b4  10.0/RPMS/xine-ui-0.9.23-3.1.100mdk.i586.rpm
f3e7f13333911081911e1e3e56467086  10.0/RPMS/xine-ui-aa-0.9.23-3.1.100mdk.i586.rpm
d99946b43d7e310293fbee034ae49088  10.0/RPMS/xine-ui-fb-0.9.23-3.1.100mdk.i586.rpm
7d0e0c86903ae3ec637e530aff618aaa  10.0/SRPMS/xine-ui-0.9.23-3.1.100mdk.src.rpm

Referenzen