GLSA-201009-09 : fence: Multiple symlink vulnerabilities
High Nessus Plugin ID 49732
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201009-09 (fence: Multiple symlink vulnerabilities)
The fence_apc, fence_apc_snmp (CVE-2008-4579) and fence_manual (CVE-2008-4580) programs contain symlink vulnerabilities.
These vulnerabilities may allow arbitrary files to be overwritten with root privileges.
There is no known workaround at this time.
SolutionGentoo discontinued support for fence. All fence users should uninstall and choose another software that provides the same functionality.
# emerge --unmerge sys-cluster/fence