GNU Ed Symlink Vulnerability

Solution:
Affected vendors, including Mandrake, Conectiva, Debian, RedHat, Trustix and others have released new, fixed versions of the ed package.

Gentoo Linux has released advisory GLSA 200410-07 to address this issue. Users of affected packages are urged to execute the following commands with superuser privileges:
emerge sync
emerge -pv ">=sys-apps/ed-0.2-r4"
emerge ">=sys-apps/ed-0.2-r4"
Please see the referenced advisory for further information.


GNU Ed 2.15

GNU Ed 2.18 .0


 

Privacy Statement
Copyright 2010, SecurityFocus