Mandrake Linux Security Advisory : kdebase (MDKSA-2006:105)
Medium Nessus Plugin ID 21720
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA problem with how kdm manages the ~/.dmrc file was discovered by Ludwig Nussel. By using a symlink attack, a local user could get kdm to read arbitrary files on the system, including privileged system files and those belonging to other users.
The updated packages have been patched to correct these issues.
SolutionUpdate the affected packages.