r588 - html/trunk/lfs/errata/6.1

archaic at linuxfromscratch.org archaic at linuxfromscratch.org
Sat Oct 8 10:54:29 PDT 2005


Author: archaic
Date: 2005-10-08 11:54:25 -0600 (Sat, 08 Oct 2005)
New Revision: 588

Modified:
   html/trunk/lfs/errata/6.1/index.html
Log:
Added errata for texinfo.

Modified: html/trunk/lfs/errata/6.1/index.html
===================================================================
--- html/trunk/lfs/errata/6.1/index.html	2005-10-07 16:06:08 UTC (rev 587)
+++ html/trunk/lfs/errata/6.1/index.html	2005-10-08 17:54:25 UTC (rev 588)
@@ -7,6 +7,13 @@
 	 <h2>Known Security Vulnerabilities</h2>
 
      <ul>
+		<li><p>Texinfo-4.8 (and previous versions) has a vulnerability
+			wherein a user can create a symlink attack due to poor
+			tempfile creation. It is recommended to apply the patch
+			found <a href=http://www.linuxfromscratch.org/patches/downloads/texinfo/texinfo-4.8-tempfile_fix-1.patch">here</a>
+		    </p>
+		</li>
+
 		<li><p>Util-linux-2.12q (and previous versions) has a
 			vulnerability wherein a user who has permission to
 			unmount a volume can remount it without the nosuid




More information about the website mailing list