In response to a report of a GT.M vulnerability, we have produced a GT.M security advisory (see http://www.fidelityinfoservices.com/NR/rdonlyres/0CABD5C8-82B9-41E9-B9C1-5D477E36E306/0/0810232cS9I10002703gtmsecshr.pdf\). This vulnerability can theoretically allow someone who has programmer access to GT.M in a UNIX/Linux system to escalate privileges to root, but should not otherwise expose a properly secured production system.
Please read the advisory at your earliest convenience, and take action as appropriate for your environment(s). Please do contact me with any questions, comments or concerns.
bhaskar at users dot sourceforge dot net
Log in to post a comment.