1
Candidate: CVE-2008-4966
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4966
6
linux-patch-openswan 2.4.12 allows local users to overwrite arbitrary files
7
via a symlink attack on (a) /tmp/snap##### and (b) /tmp/nightly#####
8
temporary files, related to the (1) maysnap and (2) maytest scripts.
11
jdstrand> per Debian, the vulnerable scripts are unused from the source
19
upstream_openswan: released (1:2.6.21+dfsg-2)
20
dapper_openswan: ignored (reached end-of-life)
21
gutsy_openswan: needed (reached end-of-life)
22
hardy_openswan: ignored (reached end-of-life)
23
intrepid_openswan: needed (reached end-of-life)
24
jaunty_openswan: ignored (reached end-of-life)
25
karmic_openswan: not-affected (1:2.6.22+dfsg-1.1ubuntu1)
26
lucid_openswan: not-affected
27
maverick_openswan: not-affected
28
natty_openswan: not-affected
29
oneiric_openswan: not-affected
30
devel_openswan: not-affected