CVE-2006-0071 Information

Description

The ebuild for pinentry before 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs which allows local users to read or overwrite arbitrary files as gid 0.

Reference

http://secunia.com/advisories/18284 http://www.gentoo.org/security/en/glsa/glsa-200601-01.xml http://www.osvdb.org/22211 http://www.securityfocus.com/bid/16120