CVE-2010-0424

Priority
Description
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie
cron (vixie-cron) allows local users to change the modification times of
arbitrary files, and consequently cause a denial of service, via a symlink
attack on a temporary file in the /tmp directory.
Notes
keesDebian cron is vixie 3.0-based, not 4.1-based, this was in 4.1 and later
Package
Source: cron (LP Ubuntu Debian)
Upstream:not-affected
More Information

Updated: 2020-09-10 01:34:43 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)