CVE-2009-4135
CVE-2009-4135
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain privileges via a symlink attack on a file in a directory tree under /tmp.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://git.savannah.gnu.org/cgit/coreutils.git/commit/?id=ae034822c535fa5http://marc.info/?l=oss-security&m=126030454503441&w=2https://bugzilla.redhat.com/show_bug.cgi?id=545439http://secunia.com/advisories/37645http://secunia.com/advisories/37860http://secunia.com/advisories/62226https://exchange.xforce.ibmcloud.com/vulnerabilities/54673https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00954.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg00972.htmlhttp://www.mail-archive.com/bug-coreutils%40gnu.org/msg18779.htmlhttp://www.mail-archive.com/bug-coreutils%40gnu.org/msg18787.htmlhttp://www.openwall.com/lists/oss-security/2009/12/08/4