2 matches found
OpenLDAP: Insecure usage of /tmp during installation
Background OpenLDAP Software is an open source implementation of the Lightweight Directory Access Protocol. Description Tavis Ormandy of the Gentoo Linux Security Team has discovered that the file gencert.sh distributed with the Gentoo ebuild for OpenLDAP does not exit upon the existence of a...
GLSA-200504-25 : Rootkit Hunter: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200504-25 Rootkit Hunter: Insecure temporary file creation Sune Kloppenborg Jeppesen and Tavis Ormandy of the Gentoo Linux Security Team have reported that the checkupdate.sh script and the main rkhunter script insecurely creates...