PublicDate: 2008-09-04 18:41:00 UTC
Candidate: CVE-2008-3929
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3929
Description:
 gather-messages.sh in Ampache 3.4.1 allows local users to overwrite
 arbitrary files via a symlink attack on the /tmp/filelist temporary file.
Ubuntu-Description:
Notes:
 jdstrand> per Debian, script is only used when translating ampache to a new
  language
Bugs:
Priority: negligible
Discovered-by:
Assigned-to:
CVSS: 

Patches_ampache:
upstream_ampache: released (3.4.1-2)
dapper_ampache: DNE
feisty_ampache: DNE
gutsy_ampache: DNE
hardy_ampache: ignored (reached end-of-life)
intrepid_ampache: not-affected (3.4.3-0ubuntu3)
jaunty_ampache: not-affected
karmic_ampache: not-affected
lucid_ampache: not-affected
maverick_ampache: not-affected
natty_ampache: not-affected
oneiric_ampache: not-affected
devel_ampache: not-affected