Medium: lynis

2017-06-22T23:00:00
ID ALAS-2017-847
Type amazon
Reporter Amazon
Modified 2017-06-22T23:00:00

Description

Issue Overview:

Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly gain privileges via a symlink attack on a temporary file. (CVE-2017-8108 __)

Affected Packages:

lynis

Issue Correction:
Run yum update lynis to update your system.

New Packages:

noarch:  
    lynis-2.5.0-1.6.amzn1.noarch

src:  
    lynis-2.5.0-1.6.amzn1.src