Could this bug be eventually fixed? One can compromise other users' account for those who run things from /tmp subdirectories, e.g.
User1: echo "echo Hacked >> ~/.profile" > /tmp/install-sh chmod 755 /tmp/install-sh cp /tmp/install-sh /tmp/config.guess User2: * Have some libtool-based source in /tmp/some_dir * From this directory, run: autoreconf -i ./configure The consequence is that User2 has "Hacked" written at the end of his .profile file. Of course, one can do much worse... -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
