CVE-2007-3103

Publication date 15 July 2007

Last updated 24 July 2024


Ubuntu priority

The init.d script for the X.Org X11 xfs font server on various Linux distributions might allow local users to change the permissions of arbitrary files via a symlink attack on the /tmp/.font-unix temporary file.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
xfs 9.10 karmic
Fixed 1.0.4-2
9.04 jaunty
Fixed 1.0.4-2
8.10 intrepid
Fixed 1.0.4-2
8.04 LTS hardy
Fixed 1.0.4-2
7.10 gutsy
Fixed 1.0.4-2
7.04 feisty Ignored end of life, was needed
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life