Serious security flaw in Gnatsweb

bug-gnats

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Serious security flaw in Gnatsweb

From:	Yngve Svendsen
Subject:	Serious security flaw in Gnatsweb
Date:	Tue, 26 Jun 2001 22:39:55 +0200

Gnatsweb versions 2.7 beta, 2.8.0 and 2.8.1 have a serious security hole,potentially allowing an attacker to read or execute files on the Gnatswebserver machine. A security advisory, with fixes, are available fromhttp://sources.redhat.com/gnats/gnatsweb/advisory-jun-26-2001.html

I urge people running the affected Gnatsweb versions to apply the fixesimmediately, or download version 2.8.2 of Gnatsweb which incorporates the fix.

People running Gnatsweb 3.95 for GNATS 4 from CVS, checked out prior toJune 26 2001 12:15 PDT should check out the newest version, whichincorporates the fix.


Yngve Svendsen
Gnatsweb maintainer

[Prev in Thread]

Current Thread

[Next in Thread]

Serious security flaw in Gnatsweb, Yngve Svendsen <=

Prev by Date: toner cartridges
Next by Date: (no subject)
Previous by thread: toner cartridges
Index(es):
- Date
- Thread