Mandriva: Updated audacity package fixes insecure temporary

Mandriva: Updated audacity package fixes insecure temporary
BugsAlert Home > Mandriva: Updated audacity package fixes insecure temporary




LinuxSecurity.com: Audacity creates a temporary directory with a predictable name without checking for previous existence of that directory, which allows local users to cause a denial of service (recording deadlock) by creating the directory before Audacity is run. This issue can also be leveraged to delete arbitrary files or directories via a symlink attack. The updated package fixes the issue. Original Source: http://www.linuxsecurity.com/content/view/135568?rdf Learn more about Mandriva: Updated audacity package fixes insecure temporary


Tags: mandriva updated audacity package fixes insecure temporary

Related Items
Vuln: Bahar Download Script 'aspkat.asp' SQL Injection Vulnerability
Grub Legacy Security Model bypass exploiting wrong BIOS API usage
SELinux and Security Changes in the 2.6.27 Kernel
The Extended HTML Form Attack Revisited
CVE-2008-0718 (Solaris)
CVE-2008-3193 (jsite)
TROJ_QHOST.GM