CVE-2008-5135 (retired)

Priority
Description
** DISPUTED ** os-prober in os-prober 1.17 allows local users to overwrite
arbitrary files via a symlink attack on the (1) /tmp/mounted-map or (2)
/tmp/raided-map temporary file. NOTE: the vendor disputes this issue,
stating "the insecure code path should only ever run inside a d-i
environment, which has no non-root users."
Notes
mdeslaurupstream disputes this, let's ignore
Package
Upstream:needs-triage
More Information

Updated: 2019-10-09 07:13:06 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)