|
Family: Debian Local Security Checks --> Category: infos
[DSA633] DSA-633-1 bmv Vulnerability Scan
Vulnerability Scan Summary DSA-633-1 bmv
Detailed Explanation for this Vulnerability Test
Peter Samuelson, upstream maintainer of bmv, a PostScript viewer for
SVGAlib, discovered that temporary files are created in an insecure
fashion. A malicious local user could cause arbitrary files to be
overwritten by a symlink attack.
For the stable distribution (woody) this problem has been
fixed in version 1.2-14.2.
For the unstable distribution (sid) this problem has been fixed in
version 1.2-17.
We recommend that you upgrade your bmv packages.
Solution : http://www.debian.org/security/2005/dsa-633
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|