Nom du paquet
automake
Date
2013-04-05
Advisory ID
MDVSA-2013:031
Affected versions
MBS1 x86_64

Problem description

A vulnerability has been discovered and corrected in automake:

A race condition in automake (lib/am/distdir.am) could allow a local
attacker to run arbitrary code with the privileges of the user running
make distcheck (CVE-2012-3386).

The updated packages have been patched to correct this issue.

NOTE: This advisory was previousely given the MDVSA-2013:018 identifier
by mistake.

Updated packages

MBS1 x86_64

 d3d81ea5f344d0253504ebade7bf050f  mbs1/x86_64/automake-1.11.3-2.1.mbs1.noarch.rpm
 60b7ae1989d875a1b0d6cfd8363d746c  mbs1/x86_64/automake1.7-1.7.9-14.1.mbs1.noarch.rpm 
 7154fc724699ae697f2c8c199720a69b  mbs1/SRPMS/automake-1.11.3-2.1.mbs1.src.rpm
 7bf45296cd443808b262c92ece293be8  mbs1/SRPMS/automake1.7-1.7.9-14.1.mbs1.src.rpm

References