Candidate: CVE-2015-0858
PublicDate: 2016-05-06 17:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0858
Description:
 Cool Projects TarDiff allows local users to write to arbitrary files via a
 symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N [3.3 LOW]

Patches_tardiff:
upstream_tardiff: released (0.1-3)
precise_tardiff: DNE
trusty_tardiff: released (0.1-2+deb8u2build0.14.04.1)
trusty/esm_tardiff: DNE (trusty was released [0.1-2+deb8u2build0.14.04.1])
vivid_tardiff: ignored (reached end-of-life)
vivid/stable-phone-overlay_tardiff: DNE
vivid/ubuntu-core_tardiff: DNE
wily_tardiff: released (0.1-2+deb8u2build0.15.10.1)
xenial_tardiff: not-affected (0.1-4)
devel_tardiff: not-affected (0.1-5)