Candidate: CVE-2013-4136
PublicDate: 2013-09-30 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4136
 http://openwall.com/lists/oss-security/2013/07/15/2
Description:
 ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 for
 Ruby allows local users to gain privileges or possibly change the ownership
 of arbitrary directories via a symlink attack on a directory with a
 predictable name in /tmp/.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=717176
Priority: medium
Discovered-by: Raphael Geissert
Assigned-to:
CVSS: 

Tags_passenger: symlink-restriction hardlink-restriction
Patches_passenger:
 upstream: https://github.com/phusion/passenger/commit/5483b3292cc2af1c83033eaaadec20dba4dcfd9b (p1)
 upstream: https://github.com/phusion/passenger/commit/9dda49f4a3ebe9bafc48da1bd45799f30ce19566 (p2)
upstream_passenger: released (4.0.8)
lucid_passenger: ignored (reached end-of-life)
precise_passenger: ignored (reached end-of-life)
precise/esm_passenger: DNE (precise was needed)
quantal_passenger: DNE
raring_passenger: DNE
saucy_passenger: DNE
trusty_passenger: DNE
trusty/esm_passenger: DNE
utopic_passenger: DNE
vivid_passenger: DNE
vivid/stable-phone-overlay_passenger: DNE
vivid/ubuntu-core_passenger: DNE
wily_passenger: DNE
xenial_passenger: not-affected
yakkety_passenger: not-affected
zesty_passenger: not-affected
devel_passenger: not-affected

Tags_ruby-passenger: symlink-restriction hardlink-restriction
Patches_ruby-passenger:
 upstream: https://github.com/phusion/passenger/commit/5483b3292cc2af1c83033eaaadec20dba4dcfd9b (p1)
 upstream: https://github.com/phusion/passenger/commit/9dda49f4a3ebe9bafc48da1bd45799f30ce19566 (p2)
upstream_ruby-passenger: released (4.0.8)
lucid_ruby-passenger: DNE
precise_ruby-passenger: DNE
precise/esm_ruby-passenger: DNE
quantal_ruby-passenger: ignored (reached end-of-life)
raring_ruby-passenger: ignored (reached end-of-life)
saucy_ruby-passenger: ignored (reached end-of-life)
trusty_ruby-passenger: not-affected (4.0.37-2)
trusty/esm_ruby-passenger: DNE (trusty was not-affected [4.0.37-2])
utopic_ruby-passenger: not-affected (4.0.37-2)
vivid_ruby-passenger: not-affected (4.0.37-2)
vivid/stable-phone-overlay_ruby-passenger: DNE
vivid/ubuntu-core_ruby-passenger: DNE
wily_ruby-passenger: not-affected (4.0.37-2)
xenial_ruby-passenger: DNE
yakkety_ruby-passenger: DNE
zesty_ruby-passenger: DNE
devel_ruby-passenger: DNE