|
Family: Debian Local Security Checks --> Category: infos
[DSA615] DSA-615-1 debmake Vulnerability Scan
Vulnerability Scan Summary DSA-615-1 debmake
Detailed Explanation for this Vulnerability Test
Javier Fernández-Sanguino Peña from the Debian Security Audit Project
noticed that the debstd script from
debmake, a deprecated helper package for Debian packaging, created
temporary directories in an insecure manner. This can be exploited by
a malicious user to overwrite arbitrary files owned by the victim.
For the stable distribution (woody) this problem has been fixed in
version 3.6.10.woody.1.
For the unstable distribution (sid) this problem has been fixed in
version 3.7.7.
We recommend that you upgrade your debmake package.
Solution : http://www.debian.org/security/2004/dsa-615
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|