Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Amazon Linux Local Check: ALAS-2014-357
Information
Severity
Severity
Low
Family
Family
Amazon Linux Local Security Checks
CVSSv2 Base
CVSSv2 Base
3.3
CVSSv2 Vector
CVSSv2 Vector
AV:L/AC:M/Au:N/C:N/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
8 years ago
Modified
Modified
5 years ago
Summary
Amazon Linux Local Security Checks
Insight
Insight
The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.
Solution
Solution
Run yum update readline to update your system.