Slackware: 'nautilus' Symlink attack vulnerability
Summary
Where Find New Packages
MD5 Signatures
Installation Instructions
Fri May 3 12:17:25 PDT 2002 patches/packages/nautilus.tgz: Patched to fix metadata security problems. Nautilus was patched and recompiled to fix a problem which would allow a malicious user to mount a symlink attack to overwrite another user's files. Thanks to Joe Testa and Rapid 7, Inc. for finding this problem, and to Havoc Pennington for sharing Red Hat's backport of the CVS fixes with us. (* Security fix *)
Sign up to get the latest security news affecting Linux and
open source delivered straight to your inbox
Powered By
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.