summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat (limited to 'glsa-200404-01.xml')
-rw-r--r--glsa-200404-01.xml11
1 files changed, 5 insertions, 6 deletions
diff --git a/glsa-200404-01.xml b/glsa-200404-01.xml
index e852dcf..36fda1d 100644
--- a/glsa-200404-01.xml
+++ b/glsa-200404-01.xml
@@ -1,6 +1,5 @@
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
-
<glsa id="200404-01">
<title>Insecure sandbox temporary lockfile vulnerabilities in Portage</title>
<synopsis>
@@ -11,8 +10,8 @@
the system.
</synopsis>
<product type="ebuild">Portage</product>
- <announced>April 04, 2004</announced>
- <revised>April 04, 2004: 01</revised>
+ <announced>2004-04-04</announced>
+ <revised>2004-04-04: 01</revised>
<bug>21923</bug>
<access>local</access>
<affected>
@@ -26,7 +25,7 @@
Portage is Gentoo's package management system which is responsible for
installing, compiling and updating any ebuilds on the system through the
Gentoo rsync tree. Under default configurations, most ebuilds run under a
- sandbox which prevent the build process writing to the &quot;real&quot;
+ sandbox which prevent the build process writing to the "real"
system outside the build directory - packages are installed into a
temporary location and then copied over safely by Portage instead. During
the process the sandbox wrapper creates lockfiles in the /tmp directory
@@ -84,8 +83,8 @@
<code>
# emerge sync
- # emerge -pv ">=sys-apps/portage-2.0.50-r3"
- # emerge ">=sys-apps/portage-2.0.50-r3"</code>
+ # emerge -pv "&gt;=sys-apps/portage-2.0.50-r3"
+ # emerge "&gt;=sys-apps/portage-2.0.50-r3"</code>
</resolution>
<references>
</references>