Mandrake Linux Security Advisory : openssl (MDKSA-2004:147)
Low Nessus Plugin ID 15920
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionThe Trustix developers found that the der_chop script, included in the openssl package, created temporary files insecurely. This could allow local users to overwrite files using a symlink attack.
The updated packages have been patched to prevent this problem.
SolutionUpdate the affected packages.