The _rl_tropen function in util.c in GNU readline prior to 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mageia mageia 4.0 |
||
mageia mageia 3.0 |
||
gnu readline 5.2 |
||
gnu readline 5.1 |
||
gnu readline 5.0 |
||
gnu readline 4.3 |
||
gnu readline |
||
gnu readline 6.1 |
||
gnu readline 4.2 |
||
gnu readline 4.0 |
||
gnu readline 2.2 |
||
gnu readline 2.1 |
||
gnu readline 6.2 |
||
gnu readline 6.0 |
||
gnu readline 4.1 |
||
opensuse opensuse 12.3 |
||
opensuse opensuse 13.1 |
||
fedoraproject fedora 20 |