Mandriva: 2013:244: davfs2

Posted by Ridcully on Sep 30, 2013 7:07 PM EDT; By Benjamin D. Thomas
Mail this story
Print this story

A vulnerability has been discovered and corrected in davfs2: Davfs2, a filesystem client for WebDAV, calls the function system() insecurely while is setuid root. This might allow a privilege escalation (CVE-2013-4362). The updated packages have been patched to correct this issue.

Full Story

» Read more about: Story Type: Announcements, Security; Groups: Developer, Mandriva

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.