man-db数据包2.3.16-3版本中mandb存在漏洞。本地用户借助超长命令行选项(1) -u或者(2) -c覆盖任意文件,该漏洞不降低特权并且跟随符号链接。
man-db version 2.3.17.1-4 corrects the problem. Progeny Debian 1.0
来源: DEBIAN 名称: DSA-056 链接:http://www.debian.org/security/2001/dsa-056 来源: online.securityfocus.com 链接:http://online.securityfocus.com/advisories/3307 来源: BID 名称: 2720 链接:http://www.securityfocus.com/bid/2720
暂无