First published: Fri Nov 07 2008(Updated: )
** DISPUTED ** init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor disputes this vulnerability, stating that "init is [used in] a single-user context; there's no possibility that this is exploitable."
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Debian Initramfs-tools | =0.92f | |
=0.92f |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.