-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200308-03.1 - - - ---------------------------------------------------------------------
� � � � � PACKAGE : vmware � � � � � SUMMARY : insecure symbolic links � � � � � � �DATE : 2003-09-01 13:42 UTC � � � � � EXPLOIT : local VERSIONS AFFECTED : <vmware-workstation-4.0.2.5592 � � FIXED VERSION : >=vmware-workstation-4.0.2.5592 � � � � � � � CVE : - - - --------------------------------------------------------------------- The previous GLSA 200308-03 was wrong when it stated that vmware-workstation-4.0.1-5289 would fix the problems described in the advisory. SOLUTION It is recommended that all Gentoo Linux users who are running app-emulation/vmware-workstation-4.x upgrade to vmware-workstation-4.0.1-5289 as follows emerge sync emerge \=app-emulation/vmware-workstation/vmware-workstation-4.0.2.5592 emerge clean - - - --------------------------------------------------------------------- [EMAIL PROTECTED] - GnuPG key is available at http://dev.gentoo.org/~aliz - - - --------------------------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/U0zRfT7nyhUpoZMRAhh1AKC4xNS3mE4ub4NcBufMhbxl0EZgdQCfZqbY QbX+wWrTeZJawox7cWMY4/k= =7SA8 -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
