CVE-2001-1593

Currently unrated

Key Information:

Vendor: Gnu
Status: A2ps
Vendor: CVE Published:; 5 April 2014

Summary

The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier, as used by the spy_user function and possibly other functions, allows local users to modify arbitrary files via a symlink attack on a temporary file.

References

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737385

x_refsource_CONFIRM

http://pkgs.fedoraproject.org/cgit/a2ps.git/plain/a2ps-4....

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=1060630

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 5, 2014
Vulnerability Reserved
Feb 5, 2014