|
Family: Ubuntu Local Security Checks --> Category: infos
USN172-1 : lm-sensors vulnerabilities Vulnerability Scan
Vulnerability Scan Summary lm-sensors vulnerabilities
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- libsensors-dev
- libsensors3
- lm-sensors
- sensord
Description :
Javier Fernández-Sanguino Peña noticed that the pwmconfig script
created temporary files in an insecure manner. This could allow
a symlink attack to create or overwrite arbitrary files with full
root rights since pwmconfig is usually executed by root.
Solution :
Upgrade to :
- libsensors-dev-2.8.8-7ubuntu2.1 (Ubuntu 5.04)
- libsensors3-2.8.8-7ubuntu2.1 (Ubuntu 5.04)
- lm-sensors-2.8.8-7ubuntu2.1 (Ubuntu 5.04)
- sensord-2.8.8-7ubuntu2.1 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|