Candidate: CVE-2010-4338
PublicDate: 2011-01-20 19:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4338
Description:
 ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary
 files via a symlink attack on temporary files that are generated when
 Cuneiform is invoked as the OCR engine.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598134
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_ocrodjvu:
upstream_ocrodjvu: released (0.4.6-2)
dapper_ocrodjvu: DNE
hardy_ocrodjvu: DNE
karmic_ocrodjvu: DNE
lucid_ocrodjvu: ignored (reached end-of-life)
maverick_ocrodjvu: not-affected (0.4.6-2)
natty_ocrodjvu: not-affected (0.4.6-3)
oneiric_ocrodjvu: not-affected (0.4.6-3)
precise_ocrodjvu: not-affected (0.4.6-3)
quantal_ocrodjvu: not-affected (0.4.6-3)
raring_ocrodjvu: not-affected (0.4.6-3)
saucy_ocrodjvu: not-affected (0.4.6-3)
devel_ocrodjvu: not-affected (0.4.6-3)