Updated busybox package fixes security vulnerability
Publication date: 30 Nov 2013Modification date: 30 Nov 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-1813
Description
It was found that the mdev BusyBox utility could create certain directories within /dev with world-writable permissions. A local unprivileged user could use this flaw to manipulate portions of the /dev directory tree (CVE-2013-1813).
References
SRPMS
3/core
- busybox-1.20.2-2.1.mga3