Candidate: CVE-2009-4029
PublicDate: 2009-12-20 02:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4029
Description:
 The (1) dist or (2) distcheck rules in GNU Automake 1.11.1, 1.10.3, and
 release branches branch-1-4 through branch-1-9, when producing a
 distribution tarball for a package that uses Automake, assign insecure
 permissions (777) to directories in the build tree, which introduces a race
 condition that allows local users to modify the contents of package files,
 introduce Trojan horse programs, or conduct other attacks before the build
 is complete.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_automake:
upstream_automake: released (1:1.11.1-1)
dapper_automake: ignored (reached end-of-life)
hardy_automake: ignored (reached end-of-life)
intrepid_automake: needed (reached end-of-life)
jaunty_automake: ignored (reached end-of-life)
karmic_automake: ignored (reached end-of-life)
lucid_automake: not-affected (1:1.11.1-1)
maverick_automake: not-affected (1:1.11.1-1)
natty_automake: not-affected (1:1.11.1-1)
devel_automake: not-affected (1:1.11.1-1)