|
Family: Ubuntu Local Security Checks --> Category: infos
USN194-1 : texinfo vulnerability Vulnerability Scan
Vulnerability Scan Summary texinfo vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- info
- texinfo
Description :
Frank Lichtenheld discovered that the "texindex" program created
temporary files in an insecure manner. This could allow a symlink
attack to create or overwrite arbitrary files with the rights of
the user running texindex.
Solution :
Upgrade to :
- info-4.7-2.2ubuntu1.1 (Ubuntu 5.04)
- texinfo-4.7-2.2ubuntu1.1 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|