Ubuntu Security Update USN-6275-1: Cargo vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,804
Reaction score
94
Credits
-1,257
Addison Crump discovered that Cargo incorrectly set file permissions on UNIX-like systems when extracting crate archives. If the crate would contain files writable by any user, a local attacker could possibly use this issue to execute code as another user.

Continue reading...
 


Follow Linux.org

Members online


Latest posts

Top