Amazon Linux 1 (EOL) Security Advisory: ALAS-2015-627
Advisory Released Date: 2015-12-14
Advisory Updated Date: 2015-12-14
Severity:
Low
Issue Overview:
A vulnerability in perl-IPTables-Parse was found, when using predictable file names for its temporary files. This vulnerability allows attacker on a multi-user system to set up symlinks to overwrite any file the current user has write access to.
Affected Packages:
perl-IPTables-Parse
Issue Correction:
Run yum update perl-IPTables-Parse to update your system.
New Packages:
noarch:
perl-IPTables-Parse-1.5-2.3.amzn1.noarch
src:
perl-IPTables-Parse-1.5-2.3.amzn1.src