Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 4657
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Linux bug wranglers <bug-wranglers@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Dan Naumov <jago@telefragged.com>
Add CC:
CC:
URL:
Summary:
Status Whiteboard:
Keywords:

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 4657 depends on: Show dependency tree
Bug 4657 blocks:
Votes: 0    Show votes for this bug    Vote for this bug

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2002-07-07 16:34 0000 
Accodring to a SecurityFocus advisory found at
http://online.securityfocus.com/archive/1/278984 Acroread 5.05 (as well as some
previous versions) have a major temp file explot vulnerability. I believe that 
it's in users best interest to mask this ebuild until Adobe fixes the issue.

------- Comment #1 From Seemant Kulleen (RETIRED) 2002-07-07 18:09:51 0000 ------- 
Thanks much for this Jago!  A Gentoo Linux Security Announcement has been sent
to all the mailing lists.  Additionally, the new acroread ebuild is just a
wrapper which calls xpdf and warns the user to unmerge acroread :)

------- Comment #2 From Dan Naumov 2002-07-07 18:32:30 0000 ------- 
Right now attempting to emerge acroread will install xpdf. While XPDF is good
for basic things, you might want to try "app-text/gv" if you need a slightly
more advanced alternative to AcroRead.
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug