Summary: | www-servers/thttpd: htpasswd Arbitrary Privileged Command Execution (CAN-2006-1354) | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Eduardo Tongson <propolice> | ||||
Component: | Vulnerabilities | Assignee: | www-servers Herd (OBSOLETE) <www-servers+disabled> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | normal | CC: | bangert | ||||
Priority: | High | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
URL: | http://archives.neohapsis.com/archives/bugtraq/2006-02/0663.html | ||||||
Whiteboard: | |||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Eduardo Tongson
2006-03-30 13:23:51 UTC
Created attachment 83458 [details, diff]
htpasswdc_temporaryfix.patch
attached the temporary fix
reassigning to www-servers, this is clearly not a security issue. now in version 2.25b-r7 - please test. |