|
Family: Debian Local Security Checks --> Category: infos
[DSA712] DSA-712-1 geneweb Vulnerability Scan
Vulnerability Scan Summary DSA-712-1 geneweb
Detailed Explanation for this Vulnerability Test
Tim Dijkstra discovered a problem during the upgrade of geneweb, a
genealogy software with web interface. The maintainer scripts
automatically converted files without checking their permissions and
content, which could lead to the modification of arbitrary files.
For the stable distribution (woody) this problem has been fixed in
version 4.06-2woody1.
For the unstable distribution (sid) this problem has been fixed in
version 4.10-7.
We recommend that you upgrade your geneweb package.
Solution : http://www.debian.org/security/2005/dsa-712
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|