CVE-2012-3500

Publication date 3 September 2012

Last updated 24 July 2024

scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
devscripts	12.04 LTS precise	Fixed 2.11.6ubuntu1.4
	11.10 oneiric	Fixed 2.11.1ubuntu3.2
	11.04 natty	Fixed 2.10.69ubuntu2.2
	10.04 LTS lucid	Fixed 2.10.61ubuntu5.3
	8.04 LTS hardy	Ignored end of life

Notes

tyhicks

If TMPDIR is not changed, mitigated by yama in Natty and newer

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
devscripts	Upstream: https://bugzilla.redhat.com/attachment.cgi?id=604260&action=diff Vendor: http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git;a=commit;h=1bbe2163987c53064a4cd57712927f4b06c01032 Vendor: http://anonscm.debian.org/gitweb/?p=devscripts/devscripts.git;a=commit;h=4d23a5e6c90f7a37b0972b30f5d31dce97a93eb0

CVE-2012-3500

Status

Notes

tyhicks

Patch details

References

Related Ubuntu Security Notices (USN)

Other references