ed 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1226987843
업데이트 : 2008.11.18
상세내용
* 보안 버그 수정
. CVE-2008-3916 :
Heap-based buffer overflow in the strip_escapes function in signal.c
in GNU ed before 1.0 allows context-dependent or user-assisted attackers
to execute arbitrary code via a long filename. NOTE: since ed itself
does not typically run with special privileges, this issue only crosses
privilege boundaries when ed is invoked as a third-party component.
Autoupdates 지원 : 지원
pkgsysupdate
update 패키지
RPMS :
. ed-0.2-39.i686.rpm
SRPMS :
. ed-0.2-39.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3916
|