Ubuntu Security Notice USN-104-1
4th April, 2005
sharutils vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 4.10
Details
Joey Hess discovered that "unshar" created temporary files in an
insecure manner. This could allow a symbolic link attack to create or
overwrite arbitrary files with the privileges of the user invoking the
program.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 4.10:
- sharutils
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
None