CVE-2008-4440
The CVE-2008-4440 issue affects feta’s to-upgrade plugin, where insecure handling of temporary files enables local users to exploit symbolic links to overwrite /tmp/feta.install.$USER and /tmp/feta.avail.$USER. The root cause is insecure temp-file creation in feta 1.4.16. Public references descri...