Mandriva Linux Security Advisory : perl-Proc-Daemon (MDVSA-2014:021)
High Nessus Plugin ID 72133
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionUpdated perl-Proc-Daemon package fixes security vulnerability :
It was reported that perl-Proc-Daemon, when instructed to write a pid file, does that with a umask set to 0, so the pid file ends up with mode 666, allowing any user on the system to overwrite it (CVE-2013-7135).
SolutionUpdate the affected perl-Proc-Daemon package.