Parent Directory
| 
Revision Log
MGASA-2020-0341: chrony-3.4-2.1.mga7
| 1 | type: security |
| 2 | subject: Updated chrony package fixes security vulnerability |
| 3 | CVE: |
| 4 | - CVE-2020-14367 |
| 5 | src: |
| 6 | 7: |
| 7 | core: |
| 8 | - chrony-3.4-2.1.mga7 |
| 9 | description: | |
| 10 | Chrony's method of opening its PID file could allow a compromised chrony user |
| 11 | account to overwrite files in certain parts of the filesystem with chrony's |
| 12 | PID, using a symlink attack (CVE-2020-14367). |
| 13 | references: |
| 14 | - https://bugs.mageia.org/show_bug.cgi?id=27166 |
| 15 | - https://www.openwall.com/lists/oss-security/2020/08/21/1 |
| 16 | ID: MGASA-2020-0341 |
| ViewVC Help | |
| Powered by ViewVC 1.1.30 |