blob: a9a2792a324cbdf5f32ccdbd13441827001a268d (
plain)
1
2
3
4
5
6
7
8
9
10
11
|
<sect2>
<title>Command explanations</title>
<para><userinput>patch -Np1 -i ../ed-&ed-version;.patch:</userinput> This
patch fixes a symlink vulnerability in ed. The ed executable creates files
in /tmp with predictable names. By using various symlink attacks, it is
possible to have ed write to files it should not, change the permissions
of files, etc.</para>
</sect2>
|
