[ MDVSA-2015:088 ] udisks2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2015:088
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : udisks2
 Date    : March 28, 2015
 Affected: Business Server 2.0
 _______________________________________________________________________

 Problem Description:

 Updated udisks2 packages fixes security vulnerability:
 
 A flaw was found in the way udisks and udisks2 handled long path
 names. A malicious, local user could use this flaw to create a
 specially-crafted directory structure that could lead to arbitrary
 code execution with the privileges of the udisks daemon (root)
 (CVE-2014-0004).
 _______________________________________________________________________

 References:

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0004
 http://advisories.mageia.org/MGASA-2014-0129.htm

007 Software

[ MDVSA-2015:088 ] udisks2

Leave a Reply Cancel reply

Software and Security Information