Python Update for Mandrake Linux
Posted on: 12/11/2002 01:22 PM

MandrakeSoft has released an updated python packages for Mandrake Linux 9.0

A vulnerability was discovered in python by Zack Weinberg in the way that the execvpe() method from the module uses a temporary file name. The file is created in an unsafe manner and execvpe() tries to execute it, which can be used by a local attacker to execute arbitrary code with the privilege of the user running the python code that is using this method.

Read more

Printed from Linux Compatible (