Mailinglist Archive: opensuse-security-announce (6 mails)
| < Previous | Next > |
imwheel is not vulnerable
- From: marc@xxxxxxx (Marc Heuse)
- Date: Fri Apr 21 20:09:56 2000
- Message-id: <20000421200956.B370F67AD@xxxxxxxxxxxxxx>
Please note that a local root vulnerability has been found in the imwheel
package, however:
SuSE Linux is not affected
We dont ship the vulnerable suidperl script.
>Fromthe /usr/doc/packages/imwheel/README.SuSE file:
For security reasons suid root installation as mentioned in the README file
is disabled in the distribution. If you terminate/restart the X-Server
all running instances of imwheel are killed anyway.
Thank you for your attention.
Greets,
Marc
--
Marc Heuse, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg
E@mail: marc@xxxxxxx Function: Security Support & Auditing
"lynx -source http://www.suse.de/~marc/marc.pgp ;| pgp -fka"
Key fingerprint = B5 07 B6 4E 9C EF 27 EE 16 D9 70 D4 87 B5 63 6C
| < Previous | Next > |