Paketname
zhcon
Datum
2005-01-24
Advisory ID
MDKSA-2005:012
Betroffene Versionen
10.0 amd64 , 10.1 i586 , 10.0 i586 , 10.1 x86_64

Problembeschreibung

Erik Sjolund discovered that zhcon accesses a user-controlled configuration file with elevated privileges which could make it possible to read arbitrary files. The updated packages have been patched to prevent these problems.

Aktualisierte Pakete

10.0 amd64

 3f4dc81c833c5bd43e0538de331e289b  amd64/10.0/RPMS/zhcon-0.2.3-6.2.100mdk.amd64.rpm
dafea6b3edd1bd776bc4f0a310b4f8e3  amd64/10.0/SRPMS/zhcon-0.2.3-6.2.100mdk.src.rpm

10.1 i586

 717d22a4dc7252b63bea66a955d75567  10.1/RPMS/zhcon-0.2.3-6.2.101mdk.i586.rpm
96a864157fc70decb911a34a8dbe21eb  10.1/SRPMS/zhcon-0.2.3-6.2.101mdk.src.rpm

10.0 i586

 c60dda48d225773739aa51a48a762c6f  10.0/RPMS/zhcon-0.2.3-6.2.100mdk.i586.rpm
dafea6b3edd1bd776bc4f0a310b4f8e3  10.0/SRPMS/zhcon-0.2.3-6.2.100mdk.src.rpm

10.1 x86_64

 bb8c2f25db11d57105a083744b0f55f0  x86_64/10.1/RPMS/zhcon-0.2.3-6.2.101mdk.x86_64.rpm
96a864157fc70decb911a34a8dbe21eb  x86_64/10.1/SRPMS/zhcon-0.2.3-6.2.101mdk.src.rpm

Referenzen