- Package name
- Advisory ID
- Affected versions
- 6.1 i586 , 6.0 i586 , 7.0 i586 , 7.1 i586
The eject program contains severable exploitable buffers which can be overflowed by local users and exposing root privileges. However, this can only be exploited if eject is setuid root. Linux-Mandrake does not ship eject setuid root and is therefore not vulnerable to this problem.