Originally Published: Wednesday, 10 November 1999 Author: Quentin Cregan
Published to: news_enhance_security/Security News Page: 1/1 - [Printable]

RedHat Security Advisory: new initscripts packages available (/tmp race)

"A /tmp race existed in /etc/profile.d/lang.csh. Users who had csh/tcsh as their login shell could be vulnerable to having arbitrary shell code run by their shell on login." This, and many more bugs have been patched in the latest initscripts release.