Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Possible problem with GnuPG 1.0.6

From: Przemyslaw Frasunek <venglin () freebsd lublin pl>
Date: Sat, 29 Dec 2001 19:17:39 +0100
On Sat, Dec 29, 2001 at 09:59:06AM +0100, Przemyslaw Frasunek wrote:

I've just found out strange behaviour with GnuPG 1.0.6 installed setuid
(default on Mandrake, probably others?). When decrypting file, it allows to
overwrite any group-writeable file in system.


Actually, I've just noticed, that this problem was fixed over month ago.

-- 
* Fido: 2:480/124 ** WWW: http://www.frasunek.com/ ** NIC-HDL: PMF9-RIPE *
* Inet: przemyslaw () frasunek com ** PGP: D48684904685DF43EA93AFA13BE170BF *
Previous By Date Next
Previous By Thread Next

Current thread: