Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Ubuntu Local Security Checks >> USN194-1 : texinfo vulnerability


Vulnerability Assessment Details

USN194-1 : texinfo vulnerability

Vulnerability Assessment Summary
texinfo vulnerability

Detailed Explanation for this Vulnerability Assessment

Summary :

These remote packages are missing security patches :
- info
- texinfo


Description :

Frank Lichtenheld discovered that the "texindex" program created
temporary files in an insecure manner. This could permit a symlink
attack to create or overwrite arbitrary files with the rights of
the user running texindex.

Solution :

Upgrade to :
- info-4.7-2.2ubuntu1.1 (Ubuntu 5.04)
- texinfo-4.7-2.2ubuntu1.1 (Ubuntu 5.04)



Network Security Threat Level: High


Networks Security ID:

Vulnerability Assessment Copyright: Ubuntu Security Notice (C) 2005 Canonical, Inc. / NASL script (C) 2005 Michel Arboi

Cables, Connectors

WD Caviar Blue 160gb WD1600AAJB-00J3A0 2061-701596-A00 15P Ide
$12.26
WD Caviar Blue 160gb WD1600AAJB-00J3A0 2061-701596-A00 15P Ide pictureHARD DRIVE HP 507515-002 GB1000EAMYC 1TB 7.2K SATA 3Gbps 3.5"
$259.76
HARD DRIVE HP 507515-002 GB1000EAMYC 1TB 7.2K SATA 3Gbps 3.5SEAGATE MOMENTUS 7200.4 320GB 7.2k 16MB SATA II 2.5'' ST9320423AS
$70.79
SEAGATE MOMENTUS 7200.4 320GB 7.2k 16MB SATA II 2.5'' ST9320423AS pictureNasCloud A1 Hard Disk/SSD/Pendrive 256MB LPDDR Private Storage Cloud Z8I1
$46.31
NasCloud A1 Hard Disk/SSD/Pendrive 256MB LPDDR Private Storage Cloud Z8I1 picture


Discussions

No Discussions have been posted on this vulnerability.