Описание
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.12.3 |
| hardy | ignored | end of life |
| lucid | released | 2.10.61ubuntu5.3 |
| natty | released | 2.10.69ubuntu2.2 |
| oneiric | released | 2.11.1ubuntu3.2 |
| precise | released | 2.11.6ubuntu1.4 |
| upstream | released | 2.12.2 |
Показывать по
1.2 Low
CVSS2
Связанные уязвимости
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpm ...
scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
1.2 Low
CVSS2