Mandrake Linux Security Advisory : ksymoops (MDKSA-2004:060)
Medium Nessus Plugin ID 14159
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionGeoffrey Lee discovered a problem with the ksymoops-gznm script distributed with Mandrakelinux. The script fails to do proper checking when copying a file to the /tmp directory. Because of this, a local attacker can setup a symlink to point to a file that they do not have permission to remove. The problem is difficult to exploit because someone with root privileges needs to run ksymoops on a particular module for which a symlink for the same filename already exists.
SolutionUpdate the affected ksymoops package.