3 matches found
EUVD-2008-4375
Malware in sbrugna...
GLSA-200411-13 : Portage, Gentoolkit: Temporary file vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200411-13 Portage, Gentoolkit: Temporary file vulnerabilities dispatch-conf and qpkg use predictable filenames for temporary files. Impact : A local attacker could create symbolic links in the temporary files directory, pointing t...
Insecure sandbox temporary lockfile vulnerabilities in Portage
Background Portage is Gentoo's package management system which is responsible for installing, compiling and updating any ebuilds on the system through the Gentoo rsync tree. Under default configurations, most ebuilds run under a sandbox which prevent the build process writing to the "real" system...