drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Unsichere Verwendung temporärer Dateien in sharutils
| Name: |
Unsichere Verwendung temporärer Dateien in sharutils
|
|
| ID: |
FEDORA-2005-319 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora Core 3 |
|
| Datum: |
Fr, 15. April 2005, 13:00 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0990 |
|
| Applikationen: |
GNU Shar |
|
Originalnachricht |
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-319
2005-04-14
---------------------------------------------------------------------
Product : Fedora Core 3
Name : sharutils
Version : 4.2.1
Release : 22.2.FC3
Summary : The GNU shar utilities for packaging and unpackaging shell
archives.
Description :
The sharutils package contains the GNU shar utilities, a set of tools
for encoding and decoding packages of files (in binary or text format)
in a special plain text format called shell archives (shar). This
format can be sent through e-mail (which can be problematic for regular
binary files). The shar utility supports a wide range of capabilities
(compressing, uuencoding, splitting long files for multi-part
mailings, providing checksums), which make it very flexible at
creating shar files. After the files have been sent, the unshar tool
scans mail messages looking for shar files. Unshar automatically
strips off mail headers and introductory text and then unpacks the
shar files.
Install sharutils if you send binary files through e-mail.
---------------------------------------------------------------------
* Mon Apr 11 2005 Than Ngo <than@redhat.com> 4.2.1-22.2.FC3
- apply debian patch to fix insecure temporary file creation
in unshar #154049, CAN-2005-0990
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
fc07dcf37e66806304cee15aa08cb25e SRPMS/sharutils-4.2.1-22.2.FC3.src.rpm
a7e0a420752de2891694471293c33d9b x86_64/sharutils-4.2.1-22.2.FC3.x86_64.rpm
2da2ac96023131c2611b051a73366248
x86_64/debug/sharutils-debuginfo-4.2.1-22.2.FC3.x86_64.rpm
95cd246dd03612edb6962cfc23c6beb9 i386/sharutils-4.2.1-22.2.FC3.i386.rpm
f05e7c1e156116a70a9980bbcdc6874c
i386/debug/sharutils-debuginfo-4.2.1-22.2.FC3.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
|
|
