From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7) Gecko/20040705 Firefox/0.9.1 Description of problem: While running the CIS benchmark against my system, it found numerous files in /usr/lib/ooo-1.1/share/dict/ooo all owned by the i18n sub-package that are world writeable/executable. Version-Release number of selected component (if applicable): UCARP allows a couple of hosts to share common virtual IP addresses in order to provide automatic failover. It is a portable userland implementation of the secure and patent-free Common Address Redundancy Protocol (CARP, OpenBSD's alternative to the VRRP). openoffice.org-i18n-1.1.1-6 How reproducible: Always Steps to Reproduce: 1. ls -l /usr/lib/ooo-1.1/share/dict/ooo 2. 3. Additional info:
jeez, copy-paste included the junk about CARP. Disregard that!
*** Bug 126612 has been marked as a duplicate of this bug. ***
Should be fixed in 1.1.2-1 and higher, coming soon
Fixing this for future releases is appreciated, but it's also a security bug in the *current* release. Could you please prepare and release an update for Fedora Core 2? Thank you.
An update came out for this today. Thanks!