Your submission was sent successfully! Close

CVE-2007-6209

Published: 4 December 2007

Util/difflog.pl in zsh 4.3.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Notes

AuthorNote
mdeslaur
intrepid+ don't ship the vulnerable file anymore
Priority

Low

Status

Package Release Status
zsh
Launchpad, Ubuntu, Debian
dapper Ignored
(reached end-of-life)
edgy Needs triage
(reached end-of-life)
feisty Needs triage
(reached end-of-life)
gutsy Needs triage
(reached end-of-life)
hardy Ignored
(reached end-of-life)
intrepid Not vulnerable

jaunty Not vulnerable

karmic Not vulnerable

lucid Not vulnerable

maverick Not vulnerable

natty Not vulnerable

oneiric Not vulnerable

precise Not vulnerable

quantal Not vulnerable

raring Not vulnerable

saucy Not vulnerable

upstream Needs triage