Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2008-4966

linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/snap##### and (b) /tmp/nightly##### temporary files, related to the (1) maysnap and (2) maytest scripts.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2008103...
CONFIRM: http://bugs.debian.org...
CONFIRM: http://dev.gentoo.org/...
CONFIRM: https://bugs.gentoo.or...
MISC: http://uvw.ru/report.l...
BID: 30918
XF: linuxpatchopenswan-may...

Launchpad.net

CVE 2008-4966

Related bugs

References