[go: up one dir, main page]
|
|
Log in / Subscribe / Register

readline: insecure temporary files

Package(s):readline CVE #(s):CVE-2014-2524
Created:June 10, 2014 Updated:March 29, 2015
Description: From the Red Hat bugzilla:

Steve Kemp discovered the _rl_tropen() function in readline, a set of libraries to handle command lines, insecurely handled a temporary file. This could allow a local attacker to perform symbolic link attacks. As noted in the CVE request, _rl_tropen() is typically only called during debugging.

Alerts:
Mandriva MDVSA-2015:132 readline 2015-03-29
Fedora FEDORA-2014-7496 readline 2014-12-07
openSUSE openSUSE-SU-2014:1226-1 bash 2014-09-28
Mageia MGASA-2014-0319 readline 2014-08-06
Mandriva MDVSA-2014:154 readline 2014-08-06
Fedora FEDORA-2014-7523 readline 2014-07-23
Fedora FEDORA-2014-6866 mingw-readline 2014-06-10
Fedora FEDORA-2014-6820 mingw-readline 2014-06-10
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds