Advisories ยป MGASA-2013-0358

Updated busybox package fixes security vulnerability

Publication date: 30 Nov 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-1813

Description

It was found that the mdev BusyBox utility could create certain
directories within /dev with world-writable permissions. A local
unprivileged user could use this flaw to manipulate portions of the /dev
directory tree (CVE-2013-1813).
                

References

SRPMS

3/core