CVE-2011-2533 in Ubuntu

CVE-2011-2533

Priority

Negligible

Description

The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local
users to overwrite arbitrary files via a symlink attack on an unspecified
file in /tmp/.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2533

Package

Source: dbus (LP Ubuntu Debian)

Upstream:	released (1.2.28)
Ubuntu 8.04 LTS (Hardy Heron):	not-affected (code not present)
Ubuntu 10.04 LTS (Lucid Lynx):	ignored (symlink attack during compile only)
Ubuntu 11.04 (Natty Narwhal):	not-affected
Ubuntu 11.10 (Oneiric Ocelot):	not-affected

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:22:14 UTC (commit 5347)