CVE-2014-2524

2014-08-20T14:55:00
ID CVE-2014-2524
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file.