Descriptionlibclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- SUSE-SA:2007:033, published Wed, 06 Jun 2007 15:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|Open Enterprise Server|| ||
YOU Patch Nr: 11543
|SUSE LINUX 10.0|| |
|SUSE LINUX 10.1|| |