(RHSA-2004:172) mc security update

2004-05-19T04:00:00
ID RHSA-2004:172
Type redhat
Reporter RedHat
Modified 2018-03-14T19:25:49

Description

Midnight Commander (mc) is a visual shell much like a file manager.

Several buffer overflows, several temporary file creation vulnerabilities, and one format string vulnerability have been discovered in Midnight Commander. These vulnerabilities were discovered mostly by Andrew V. Samoilov and Pavel Roskin. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2004-0226, CAN-2004-0231, and CAN-2004-0232 to these issues.

Users should upgrade to these updated packages, which contain a backported patch to correct these issues.