October 3, 2000

Cox: Security problem fixed in GnoRPM

Author: JT Smith

Linux programmer Alan Cox posts this on Gnome.org: "While fixing other problems with the gnorpm package a locally exploitable
security hole was found where a normal user could trick root running GnoRPM
into writing to arbitary files due to a bug in the gnorpm tmp file handling."


  • Linux
Click Here!