Nom du paquet
pmake
Date
2013-11-21
Advisory ID
MDVSA-2013:271
Affected versions
MBS1 x86_64

Problem description

Updated pmake package fixes security vulnerability:

The make include files in NetBSD before 1.6.2, as used in pmake
1.111 and earlier, allow local users to overwrite arbitrary files
via a symlink attack on a /tmp/_depend##### temporary file, related
to bsd.lib.mk and bsd.prog.mk (CVE-2011-1920).

Updated packages

MBS1 x86_64

 6228c8f23e3b09509f9b34befe1d95a8  mbs1/x86_64/pmake-1.45-11.1.mbs1.x86_64.rpm 
 00690830d167141f6397255ed69fb610  mbs1/SRPMS/pmake-1.45-11.1.mbs1.src.rpm

References