CVE-2008-4940

Publication date 5 November 2008

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

Description

xmlfile.py in aptoncd 0.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/aptoncd temporary file.

Read the notes from the security team

Status

Package Ubuntu Release Status
aptoncd 9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid
Not affected
8.04 LTS hardy
Not affected
7.10 gutsy Ignored end of life, was needs-triage
6.06 LTS dapper Not in release

Notes

jdstrand

Debian's package is different than Ubuntu's, and looks like it may still be vulnerable

References

Other references

Access our resources on patching vulnerabilities