Vulnerability Development mailing list archives
Re: Possible problem with GnuPG 1.0.6
From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: Sat, 29 Dec 2001 19:17:39 +0100
On Sat, Dec 29, 2001 at 09:59:06AM +0100, Przemyslaw Frasunek wrote:
I've just found out strange behaviour with GnuPG 1.0.6 installed setuid (default on Mandrake, probably others?). When decrypting file, it allows to overwrite any group-writeable file in system.
Actually, I've just noticed, that this problem was fixed over month ago. -- * Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE * * Inet: przemyslaw () frasunek com ** PGP: D48684904685DF43EA93AFA13BE170BF *
Current thread:
- Possible problem with GnuPG 1.0.6 Przemyslaw Frasunek (Dec 29)
- Re: Possible problem with GnuPG 1.0.6 Przemyslaw Frasunek (Dec 29)