---

Suse Security Announcement: imwheel is not vulnerable [in SuSE Linux]

Date: Fri, 21 Apr 2000 22:09:56 +0200 (MEST)
From: Marc Heuse [email protected]
To: [email protected], [email protected]
Subject: [suse-security-announce] imwheel is not vulnerable

Please note that a local root vulnerability has been found in
the imwheel package, however:

SuSE Linux is not affected

We dont ship the vulnerable suidperl script. >From the
/usr/doc/packages/imwheel/README.SuSE file:

For security reasons suid root installation as mentioned in the
README file is disabled in the distribution. If you
terminate/restart the X-Server all running instances of imwheel are
killed anyway.

Thank you for your attention.

Greets,

Marc