VULHUB ™

rhmask does not sufficiently validate the output filename supplied in mask files. Attackers may potentially exploit this issue to create a mask file which may cause other system files to be overwritten via a malicious symlink when the mask is applied. rhmask is not installed by default in recent versions of Red Hat Linux.

rhmask does not sufficiently validate the output filename supplied in mask files. Attackers may potentially exploit this issue to create a mask file which may cause other system files to be overwritten via a malicious symlink when the mask is applied. rhmask is not installed by default in recent versions of Red Hat Linux.