system/openrc: CVE-2018-21269: checkpath symlink attack in non-terminal path components
Bugzilla ID | 370 |
Alias(es) | CVE-2018-21269 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-11-19 21:08:28 -0600 |
Modified | 2020-11-24 17:40:00 -0600 |
Status | CONFIRMED |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | system/openrc |
Description
No official fix yet https://github.com/OpenRC/openrc/issues/201