2 matches found
[ GLSA 200909-10 ] LMBench: Insecure temporary file usage
Gentoo Linux Security Advisory GLSA 200909-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
CVE-2008-4968
The CVE-2008-4968 entry concerns lmbench (version 3.0-a7) where the rccs and STUFF scripts insecurely handle /tmp/sdiff.##### temporary files, enabling local attackers to perform symlink attacks and overwrite arbitrary files with the invoking user’s privileges. Documentation consistently cites lo...