CVE-2007-6249

Name of the Vulnerable Software and Affected Versions: Portage versions prior to 2.1.3.11

Description: The issue concerns a problem where the permissions for the merge file are set based on the umask, often resulting in weaker permissions than those of the original files. This could allow local users to obtain sensitive information by reading the merge file. The exploitation of this issue can be done locally and may lead to the compromise of protected information.

Recommendations: For versions prior to 2.1.3.11, update to version 2.1.3.11 or later to resolve the issue.