Home > Security > Advisories


Mandriva Advisories

Package name jpilot
Date December 15th, 2000
Advisory ID MDKSA-2000:081
Affected versions 7.2
Synopsis Updated jpilot packages fix insecure permissions of configuration directory

Problem Description

The jpilot program automatically creates a directory called .jpilot/
in the user's home directory with 777 (world read/write/execute)
permissions. This directory is used to store all backups, configuration
and synchronized Palm Pilot information.

Updated Packages

Mandrakelinux 7.2

 b18bdac08b3fa7055ff1d25d5bb3ddfb  7.2/RPMS/jpilot-0.98.1-7.1mdk.i586.rpm
e52bf9543f756969e8fab8520e8156e8  7.2/RPMS/jpilot-plugin-devel-0.98.1-7.1mdk.i586.rpm
072404194e6a31fc8991fb8a98cf16d8  7.2/SRPMS/jpilot-0.98.1-7.1mdk.src.rpm


To upgrade automatically, use MandrivaUpdate.


Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :

                rpm --checksig package.rpm

You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.

If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.