drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Überschreiben von Dateien in dpkg
Name: |
Überschreiben von Dateien in dpkg |
|
ID: |
DSA-2142-1 |
|
Distribution: |
Debian |
|
Plattformen: |
Debian lenny |
|
Datum: |
Do, 6. Januar 2011, 21:37 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1679 |
|
Applikationen: |
dpkg |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- ------------------------------------------------------------------------- Debian Security Advisory DSA-2142-1 security@debian.org http://www.debian.org/security/ Raphael Geissert January 06, 2011 http://www.debian.org/security/faq - -------------------------------------------------------------------------
Package : dpkg Vulnerability : directory traversal Problem type : local Debian-specific: no CVE ID : CVE-2010-1679
Jakub Wilk discovered that the dpkg-source component of dpkg, the Debian package management system, doesn't correctly handle paths in patches of source packages, which could make it traverse directories. Rapha
|
|
|
|