CVE-2008-4477

Publication date 8 October 2008

Last updated 24 July 2024


Ubuntu priority

alert.d/test.alert in mon 0.99.2 allows local users to overwrite arbitrary files via a symlink attack on the test.alert.log temporary file.

Status

Package Ubuntu Release Status
mon 8.10 intrepid
Not affected
8.04 LTS hardy
Fixed 0.99.2-11ubuntu1.8.04.1
7.10 gutsy
Fixed 0.99.2-11ubuntu1.7.10.1
7.04 feisty Ignored end of life, was needed
6.06 LTS dapper
Fixed 0.99.2-9ubuntu1.1

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
mon