Test ID:	1.3.6.1.4.1.25623.1.0.121055
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201310-17
Summary:	Gentoo Linux Local Security Checks GLSA 201310-17
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201310-17 Vulnerability Insight: /usr/share/mk/bsd.lib.mk and /usr/share/mk/bsd.prog.mk create temporary files insecurely, with predictable names (/tmp/_depend[PID]), and without using $TMPDIR. Solution: Update the affected packages to the latest available version. CVSS Score: 3.3 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1920 47878 http://www.securityfocus.com/bid/47878 [oss-security] 20110516 CVE Request -- pmake -- Use of insecure temporary file for 'depend' target http://openwall.com/lists/oss-security/2011/05/16/2 [oss-security] 20110516 Re: CVE Request -- pmake -- Use of insecure temporary file for 'depend' target http://openwall.com/lists/oss-security/2011/05/16/8 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=626673 http://cvsweb.netbsd.org/bsdweb.cgi/src/share/mk/bsd.lib.mk.diff?r1=1.239&r2=1.240&f=h http://cvsweb.netbsd.org/bsdweb.cgi/src/share/mk/bsd.prog.mk.diff?r1=1.192&r2=1.193&f=h https://bugzilla.redhat.com/show_bug.cgi?id=705090 https://bugzilla.redhat.com/show_bug.cgi?id=705100 pmake-depend-symlink(67495) https://exchange.xforce.ibmcloud.com/vulnerabilities/67495
Copyright	Copyright (C) 2015 Eero Volotinen

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.