CVE-2007-6249

2007-12-15T01:46:00
ID CVE-2007-6249
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:29:00

Description

etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on the umask to set permissions for the merge file, often resulting in permissions weaker than those of the original files, which might allow local users to obtain sensitive information by reading the merge file.