MDVSA-2009:245 -- Mandriva glib2.0ID: oval:org.secpod.oval:def:300676 | Date: (C)2012-01-07 (M)2024-02-15 |
Class: PATCH | Family: unix |
A vulnerability was discovered and corrected in glib2.0: The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link , which allows user-assisted local users to modify files of other users, as demonstrated by using Nautilus to modify the permissions of the user home directory . This update provides a solution to this vulnerability.
Platform: |
Mandriva Linux 2009.0 |
Mandriva Linux 2009.1 |
Mandriva Linux 2008.1 |