Uploaded image for project: 'Funtoo Linux'
  1. Funtoo Linux
  2. FL-7350

www-servers/thin all versions vulnerabilities on OpenRC systems via init script

XMLWordPrintable

    • Icon: Security Vulnerability Security Vulnerability
    • Resolution: Fixed
    • Icon: Normal Normal
    • None
    • None
    • None
    • Affects all versions of Thin
    • Hide
      It was discovered that Gentoo’s Thin ebuild does not properly handle its temporary runtime directories. This only affects OpenRC systems, as the flaw was exploitable via the init script.
      A local attacker could cause denial of service by killing arbitrary processes.
      Gentoo has stopped supporting thin for the time and this may be a candidate for trimming from Funtoo's repoistory since at the time there is no workaround or fix.
      Show
      It was discovered that Gentoo’s Thin ebuild does not properly handle its temporary runtime directories. This only affects OpenRC systems, as the flaw was exploitable via the init script. A local attacker could cause denial of service by killing arbitrary processes. Gentoo has stopped supporting thin for the time and this may be a candidate for trimming from Funtoo's repoistory since at the time there is no workaround or fix.

      Thin is a small and fast Ruby web server.

            Unassigned Unassigned
            krish krish
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: