This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-201310-17
(pmake: Insecure temporary file usage)
/usr/share/mk/bsd.lib.mk and /usr/share/mk/bsd.prog.mk create temporary
files insecurely, with predictable names (/tmp/_depend[PID]), and
without using $TMPDIR.
The make include files allow local users to overwrite arbitrary files
via a symlink attack.
There is no known workaround at this time.
See also :
All pmake users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=sys-devel/pmake-18.104.22.168'
Risk factor :
Low / CVSS Base Score : 3.3
CVSS Temporal Score : 2.9
Public Exploit Available : true