CVE-2005-3268

Publication date 20 October 2005

Last updated 24 July 2024


Ubuntu priority

yiff server (yiff-server) 2.14.2 on Debian GNU/Linux runs as root and does not properly verify ownership of files that it opens, which allows local users to read arbitrary files.

Status

Package Ubuntu Release Status
yiff 7.10 gutsy
Fixed 2.14.2-8
7.04 feisty
Fixed 2.14.2-8
6.10 edgy
Fixed 2.14.2-8
6.06 LTS dapper
Fixed 2.14.2-8