1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
Candidate: CVE-2008-4640
PublicDate: 2008-10-21
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4640
Description:
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier
allows local users to delete arbitrary files via vectors involving a
modified input filename in which (1) a final "z" character is replaced by a
"t" character or (2) a final "t" character is replaced by a "z" character.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_jhead:
upstream_jhead: released (2.84-2)
dapper_jhead: ignored (reached end-of-life)
gutsy_jhead: needed (reached end-of-life)
hardy_jhead: ignored (reached end-of-life)
intrepid_jhead: needed (reached end-of-life)
jaunty_jhead: not-affected (2.86-2)
karmic_jhead: not-affected
lucid_jhead: not-affected
maverick_jhead: not-affected
natty_jhead: not-affected
oneiric_jhead: not-affected
devel_jhead: not-affected
|