[ advisories | exploits | discussions | news | conventions | security tools | texts & papers ]
 main menu
- feedback
- advertising
- privacy
- FightAIDS
- newsletter
- news
- read forum
- new topic
- search

- meetings list
- recent additions
- add your info
 top 100 sites
- visit top sites
- sign up now
- members

- add your url
- add domain
- search box
- link to us

- our projects
- free email
 m4d network
- security software
- secureroot
- m4d.com
Home : Advisories : GnoRPM local /tmp vulnerability

Title: GnoRPM local /tmp vulnerability
Released by:
Date: 2nd October 2000
Printable version: Click here
While fixing other problems with the gnorpm package a locally exploitable

security hole was found where a normal user could trick root running GnoRPM

into writing to arbitary files due to a bug in the gnorpm tmp file handling.

A new release of GnoRPM (0.95.1) is now available. This fixes significant

numbers of gnorpm bugs including the security hole. Administrators who use

this program on multi-user machines may well want to update it, and anyone

who uses it regularly will probably appreciate the fact it now works rather

better than before.

All versions of GnoRPM before 0.95 are believe vulnerable


80521433f88fa09899e9105a24c69ef9 gnorpm-0.95.1.tar.gz

Download sites:


ftp.gnome.org:/pub/GNOME/stable/sources/gnorpm/gnorpm-0.95.1.tar.gz (soon)

Linux Vendor Update Information:

Conectiva Linux







Red Hat Linux


[URLS to be confirmed]

Linux Vendors Not Shipping Gnorpm

Caldera OpenLinux

Debian GNU Linux

(C) 1999-2000 All rights reserved.