Mandriva Update For Gv MDVSA-2010:159 (gv) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A vulnerability has been found and corrected in gv: GNU gv before 3.7.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file (CVE-2010-2056). This update provides gv 3.7.1, which is not vulnerable to this issue.

Affected

gv on Mandriva Linux 2010.0, Mandriva Linux 2010.0/X86_64, Mandriva Enterprise Server 5, Mandriva Enterprise Server 5/X86_64

Severity

Classification

CVE CVE-2010-2056
CVSS Base Score: 3.3
AV:L/AC:M/Au:N/C:N/I:P/A:P

Related Vulnerabilities

Mandriva Update for rxvt MDVSA-2008:161 (rxvt)
Mandriva Update for virtualbox MDVSA-2010:059 (virtualbox)
Mandriva Update for wireshark MDVSA-2012:080 (wireshark)
Mandriva Update for wireshark MDVSA-2012:015 (wireshark)
Mandriva Update for evolution MDKSA-2007:107 (evolution)

Mandriva Update for gv MDVSA-2010:159 (gv)

Take action and discover your vulnerabilities