Launchpad CVE tracker

CVE 2008-1569

policyd-weight 0.1.14 beta-16 and earlier allows local users to modify or delete arbitrary files via a symlink attack on temporary files that are used when creating a socket.

Related bugs and status

CVE-2008-1569 (Candidate) is related to these bugs:

Bug #210150: [policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files

		In	Importance	Status
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	policyd-weight (Ubuntu)	Undecided	Fix Released
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	policyd-weight (Ubuntu Feisty)	Undecided	Won't Fix
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	policyd-weight (Ubuntu Gutsy)	Undecided	Won't Fix
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	policyd-weight (Ubuntu Hardy)	Undecided	Fix Released
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	Edgy Backports	Undecided	Invalid
210150	[policyd-weight] [CVE-2008-1569, CVE-2008-1570] insecure temporary files	policyd-weight (Gentoo Linux)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.policyd-wei...
CONFIRM: https://bugs.gentoo.or...
DEBIAN: DSA-1531
BID: 28480
SECUNIA: 29553
OSVDB: 43888
GENTOO: GLSA-200804-11
SECUNIA: 29738
XF: policydweight-sockets-...

Launchpad.net

CVE 2008-1569

Related bugs and status

Related bugs

References