fence: Multiple symlink vulnerabilities

Users of fence please be advised of a Multiple symlink vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com

GLSA 201009-09: [GLSA 201009-09] fence: Multiple symlink vulnerabilites

Description =========== The fence_apc, fence_apc_snmp (CVE-2008-4579) and fence_manual (CVE-2008-4580) programs contain symlink vulnerabilites. Impact ====== These vulnerabilities may allow arbitrary files to be overwritten with root privileges. Read more at www.criticalwatch.com

 

See this Amp at http://bit.ly/cvjUSc