diff options
Diffstat (limited to 'glsa-200404-01.xml')
| -rw-r--r-- | glsa-200404-01.xml | 11 |
1 files changed, 5 insertions, 6 deletions
diff --git a/glsa-200404-01.xml b/glsa-200404-01.xml index e852dcf3..36fda1de 100644 --- a/glsa-200404-01.xml +++ b/glsa-200404-01.xml @@ -1,6 +1,5 @@ <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd"> - <glsa id="200404-01"> <title>Insecure sandbox temporary lockfile vulnerabilities in Portage</title> <synopsis> @@ -11,8 +10,8 @@ the system. </synopsis> <product type="ebuild">Portage</product> - <announced>April 04, 2004</announced> - <revised>April 04, 2004: 01</revised> + <announced>2004-04-04</announced> + <revised>2004-04-04: 01</revised> <bug>21923</bug> <access>local</access> <affected> @@ -26,7 +25,7 @@ Portage is Gentoo's package management system which is responsible for installing, compiling and updating any ebuilds on the system through the Gentoo rsync tree. Under default configurations, most ebuilds run under a - sandbox which prevent the build process writing to the "real" + sandbox which prevent the build process writing to the "real" system outside the build directory - packages are installed into a temporary location and then copied over safely by Portage instead. During the process the sandbox wrapper creates lockfiles in the /tmp directory @@ -84,8 +83,8 @@ <code> # emerge sync - # emerge -pv ">=sys-apps/portage-2.0.50-r3" - # emerge ">=sys-apps/portage-2.0.50-r3"</code> + # emerge -pv ">=sys-apps/portage-2.0.50-r3" + # emerge ">=sys-apps/portage-2.0.50-r3"</code> </resolution> <references> </references> |