xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | hylafax | < 1:4.2.2+rc1 | hylafax_1:4.2.2+rc1_all.deb |
Debian | 11 | all | hylafax | < 1:4.2.2+rc1 | hylafax_1:4.2.2+rc1_all.deb |
Debian | 10 | all | hylafax | < 1:4.2.2+rc1 | hylafax_1:4.2.2+rc1_all.deb |
Debian | 999 | all | hylafax | < 1:4.2.2+rc1 | hylafax_1:4.2.2+rc1_all.deb |
Debian | 13 | all | hylafax | < 1:4.2.2+rc1 | hylafax_1:4.2.2+rc1_all.deb |