drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Überschreiben von Dateien in dpkg
| Name: |
Überschreiben von Dateien in dpkg |
|
| ID: |
DSA-2142-1 |
|
| Distribution: |
Debian |
|
| Plattformen: |
Debian lenny |
|
| Datum: |
Do, 6. Januar 2011, 21:37 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1679 |
|
| Applikationen: |
dpkg |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -------------------------------------------------------------------------
Debian Security Advisory DSA-2142-1 security@debian.org
http://www.debian.org/security/ Raphael Geissert
January 06, 2011 http://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : dpkg
Vulnerability : directory traversal
Problem type : local
Debian-specific: no
CVE ID : CVE-2010-1679
Jakub Wilk discovered that the dpkg-source component of dpkg, the Debian
package management system, doesn't correctly handle paths in patches of
source packages, which could make it traverse directories.
Rapha
|
|
|
|
